Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-45447 (GCVE-0-2026-45447)
Vulnerability from cvelistv5 – Published: 2026-06-09 16:03 – Updated: 2026-07-08 12:06
VLAI
EPSS
Title
Heap Use-After-Free in the PKCS7_verify() Function
Summary
Issue summary: A specially crafted PKCS#7 or S/MIME signed message could
trigger a use-after-free during PKCS#7 signature verification.
Impact summary: A use-after-free may result in process crashes, heap
corruption, or potentially remote code execution.
When processing a PKCS#7 or S/MIME signed message, if the SignedData
digestAlgorithms field is present as an empty ASN.1 SET, OpenSSL may
incorrectly free a caller-owned BIO during PKCS7_verify(). A subsequent
use of the BIO by the calling application results in a use-after-free
condition.
In the common case this occurs when the application later calls
BIO_free() on the BIO originally passed to PKCS7_verify(). Depending
on allocator behavior and application-specific BIO usage patterns, this
may result in a crash or other memory corruption. In some application
contexts this may potentially be exploitable for remote code execution.
Applications that process PKCS#7 or S/MIME signed messages using OpenSSL
PKCS#7 APIs may be affected. Applications using the CMS APIs for this
processing are not affected.
The FIPS modules in 4.0, 3.6, 3.5, 3.4, and 3.0 are not affected by this
issue, as the affected code is outside the OpenSSL FIPS module boundary.
Severity
8.8 (High)
8.1 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
Assigner
References
18 references
Impacted products
22 products
| Vendor | Product | Version | |
|---|---|---|---|
| OpenSSL | OpenSSL |
Affected:
4.0.0 , < 4.0.1
(semver)
Affected: 3.6.0 , < 3.6.3 (semver) Affected: 3.5.0 , < 3.5.7 (semver) Affected: 3.4.0 , < 3.4.6 (semver) Affected: 3.0.0 , < 3.0.21 (semver) Affected: 1.1.1 , < 1.1.1zh (custom) Affected: 1.0.2 , < 1.0.2zq (custom) |
|
| Red Hat | Red Hat Enterprise Linux AppStream (v. 10) |
cpe:/o:redhat:enterprise_linux:10.2 |
|
| Red Hat | Red Hat Enterprise Linux AppStream (v. 8) |
cpe:/a:redhat:enterprise_linux:8::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream E4S (v.8.8) |
cpe:/a:redhat:rhel_e4s:8.8::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream TUS (v.8.8) |
cpe:/a:redhat:rhel_tus:8.8::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream EUS (v.9.6) |
cpe:/a:redhat:rhel_eus:9.6::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream (v. 9) |
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux BaseOS (v. 10) |
cpe:/o:redhat:enterprise_linux:10.2 |
|
| Red Hat | Red Hat Enterprise Linux BaseOS (v. 8) |
cpe:/o:redhat:enterprise_linux:8::baseos |
|
| Red Hat | Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.6) |
cpe:/o:redhat:rhel_eus_long_life:8.6::baseos |
|
| Red Hat | Red Hat Enterprise Linux BaseOS E4S (v.8.8) |
cpe:/o:redhat:rhel_e4s:8.8::baseos |
|
| Red Hat | Red Hat Enterprise Linux BaseOS TUS (v.8.8) |
cpe:/o:redhat:rhel_tus:8.8::baseos |
|
| Red Hat | Red Hat Enterprise Linux BaseOS (v. 9) |
cpe:/o:redhat:enterprise_linux:9::baseos |
|
| Red Hat | Red Hat Discovery 2 |
cpe:/a:redhat:discovery:2::el9 |
|
| Red Hat | Red Hat Insights proxy 1.5 |
cpe:/a:redhat:insights_proxy:1.5::el9 |
|
| Red Hat | Red Hat Update Infrastructure 5 |
cpe:/a:redhat:rhui:5::el9 |
|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4 |
cpe:/a:redhat:openshift:4 |
|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
Date Public
2026-06-09 14:00
Credits
Thai Duong (Calif.io in collaboration with Claude and Anthropic Research)
Igor Ustinov
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2026-45447",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-06-10T03:59:38.212378Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-06-10T13:32:20.413Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"affected": [
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:10.2"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream (v. 10)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream (v. 8)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_e4s:8.8::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_tus:8.8::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_eus:9.6::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream (v. 9)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:10.2"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux BaseOS (v. 10)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:8::baseos"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux BaseOS (v. 8)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:rhel_eus_long_life:8.6::baseos"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.6)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:rhel_e4s:8.8::baseos"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:rhel_tus:8.8::baseos"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:9::baseos"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux BaseOS (v. 9)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:discovery:2::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Discovery 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:insights_proxy:1.5::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Insights proxy 1.5",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhui:5::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Update Infrastructure 5",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "unaffected",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "unaffected",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
}
],
"datePublic": "2026-06-09T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in OpenSSL. When processing a specially crafted PKCS#7 or S/MIME (Secure/Multipurpose Internet Mail Extensions) signed message, a heap use-after-free vulnerability in the PKCS7_verify() function can be triggered. This occurs if the SignedData digestAlgorithms field is present as an empty ASN.1 SET, leading to incorrect memory deallocation. A remote attacker could exploit this to cause application crashes, memory corruption, or potentially achieve remote code execution."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-825",
"description": "Expired Pointer Dereference",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T12:06:08.977Z",
"orgId": "0b0ca135-0b70-47e7-9f44-1890c2a1c46c",
"shortName": "redhat-SADP"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-45447"
},
{
"name": "RHBZ#2481898",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2481898"
},
{
"tags": [
"x_sadp-csaf-vex"
],
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-45447.json"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25237"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36215"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36217"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:35869"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25239"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26275"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:29197"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:34102"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26319"
}
],
"solutions": [
{
"lang": "en",
"value": "RHSA-2026:25237: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux BaseOS (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:36215: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:36217: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)"
},
{
"lang": "en",
"value": "RHSA-2026:35869: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:25239: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux BaseOS (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:26275: Red Hat Enterprise Linux BaseOS (v. 8), Red Hat Enterprise Linux BaseOS E4S (v.8.8), Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.6), Red Hat Enterprise Linux BaseOS TUS (v.8.8)"
},
{
"lang": "en",
"value": "RHSA-2026:29197: Red Hat Discovery 2"
},
{
"lang": "en",
"value": "RHSA-2026:34102: Red Hat Insights proxy 1.5"
},
{
"lang": "en",
"value": "RHSA-2026:26319: Red Hat Update Infrastructure 5"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-05-27T14:17:46.000Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-06-09T00:00:00.000Z",
"value": "Made public."
}
],
"title": "openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()",
"workarounds": [
{
"lang": "en",
"value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability."
}
],
"x_adpType": "supplier",
"x_generator": {
"engine": "sadp-cli 1.0.0"
}
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "OpenSSL",
"vendor": "OpenSSL",
"versions": [
{
"lessThan": "4.0.1",
"status": "affected",
"version": "4.0.0",
"versionType": "semver"
},
{
"lessThan": "3.6.3",
"status": "affected",
"version": "3.6.0",
"versionType": "semver"
},
{
"lessThan": "3.5.7",
"status": "affected",
"version": "3.5.0",
"versionType": "semver"
},
{
"lessThan": "3.4.6",
"status": "affected",
"version": "3.4.0",
"versionType": "semver"
},
{
"lessThan": "3.0.21",
"status": "affected",
"version": "3.0.0",
"versionType": "semver"
},
{
"lessThan": "1.1.1zh",
"status": "affected",
"version": "1.1.1",
"versionType": "custom"
},
{
"lessThan": "1.0.2zq",
"status": "affected",
"version": "1.0.2",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "reporter",
"value": "Thai Duong (Calif.io in collaboration with Claude and Anthropic Research)"
},
{
"lang": "en",
"type": "remediation developer",
"value": "Igor Ustinov"
}
],
"datePublic": "2026-06-09T14:00:00.000Z",
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "Issue summary: A specially crafted PKCS#7 or S/MIME signed message could\u003cbr\u003etrigger a use-after-free during PKCS#7 signature verification.\u003cbr\u003e\u003cbr\u003eImpact summary: A use-after-free may result in process crashes, heap\u003cbr\u003ecorruption, or potentially remote code execution.\u003cbr\u003e\u003cbr\u003eWhen processing a PKCS#7 or S/MIME signed message, if the SignedData\u003cbr\u003edigestAlgorithms field is present as an empty ASN.1 SET, OpenSSL may\u003cbr\u003eincorrectly free a caller-owned BIO during PKCS7_verify(). A subsequent\u003cbr\u003euse of the BIO by the calling application results in a use-after-free\u003cbr\u003econdition.\u003cbr\u003e\u003cbr\u003eIn the common case this occurs when the application later calls\u003cbr\u003eBIO_free() on the BIO originally passed to PKCS7_verify(). Depending\u003cbr\u003eon allocator behavior and application-specific BIO usage patterns, this\u003cbr\u003emay result in a crash or other memory corruption. In some application\u003cbr\u003econtexts this may potentially be exploitable for remote code execution.\u003cbr\u003e\u003cbr\u003eApplications that process PKCS#7 or S/MIME signed messages using OpenSSL\u003cbr\u003ePKCS#7 APIs may be affected. Applications using the CMS APIs for this\u003cbr\u003eprocessing are not affected.\u003cbr\u003e\u003cbr\u003eThe FIPS modules in 4.0, 3.6, 3.5, 3.4, and 3.0 are not affected by this\u003cbr\u003eissue, as the affected code is outside the OpenSSL FIPS module boundary."
}
],
"value": "Issue summary: A specially crafted PKCS#7 or S/MIME signed message could\ntrigger a use-after-free during PKCS#7 signature verification.\n\nImpact summary: A use-after-free may result in process crashes, heap\ncorruption, or potentially remote code execution.\n\nWhen processing a PKCS#7 or S/MIME signed message, if the SignedData\ndigestAlgorithms field is present as an empty ASN.1 SET, OpenSSL may\nincorrectly free a caller-owned BIO during PKCS7_verify(). A subsequent\nuse of the BIO by the calling application results in a use-after-free\ncondition.\n\nIn the common case this occurs when the application later calls\nBIO_free() on the BIO originally passed to PKCS7_verify(). Depending\non allocator behavior and application-specific BIO usage patterns, this\nmay result in a crash or other memory corruption. In some application\ncontexts this may potentially be exploitable for remote code execution.\n\nApplications that process PKCS#7 or S/MIME signed messages using OpenSSL\nPKCS#7 APIs may be affected. Applications using the CMS APIs for this\nprocessing are not affected.\n\nThe FIPS modules in 4.0, 3.6, 3.5, 3.4, and 3.0 are not affected by this\nissue, as the affected code is outside the OpenSSL FIPS module boundary."
}
],
"metrics": [
{
"format": "other",
"other": {
"content": {
"text": "High"
},
"type": "https://openssl-library.org/policies/general/security-policy/"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-416",
"description": "CWE-416 Use After Free",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-06-10T07:48:15.381Z",
"orgId": "3a12439a-ef3a-4c79-92e6-6081a721f1e5",
"shortName": "openssl"
},
"references": [
{
"name": "OpenSSL Advisory",
"tags": [
"vendor-advisory"
],
"url": "https://openssl-library.org/news/secadv/20260609.txt"
},
{
"name": "4.0.1 git commit",
"tags": [
"patch"
],
"url": "https://github.com/openssl/openssl/commit/3aad5eb7af4de4ee0633c30a8541a54d9bbde63c"
},
{
"name": "3.6.3 git commit",
"tags": [
"patch"
],
"url": "https://github.com/openssl/openssl/commit/c505d7559da5d5f9f2c3913c6883a5562ce7273e"
},
{
"name": "3.5.7 git commit",
"tags": [
"patch"
],
"url": "https://github.com/openssl/openssl/commit/7d4a980c62258c5910cc883936e0c8dbab4d75a8"
},
{
"name": "3.4.6 git commit",
"tags": [
"patch"
],
"url": "https://github.com/openssl/openssl/commit/a541ae8bfe849a30cc885e8780715c0f488e496c"
},
{
"name": "3.0.21 git commit",
"tags": [
"patch"
],
"url": "https://github.com/openssl/openssl/commit/9dfd688ad2290fc5075cacbc9bf0c9a93eefed54"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Heap Use-After-Free in the PKCS7_verify() Function",
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "3a12439a-ef3a-4c79-92e6-6081a721f1e5",
"assignerShortName": "openssl",
"cveId": "CVE-2026-45447",
"datePublished": "2026-06-09T16:03:32.914Z",
"dateReserved": "2026-05-12T14:34:06.277Z",
"dateUpdated": "2026-07-08T12:06:08.977Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-45447",
"date": "2026-07-08",
"epss": "0.02719",
"percentile": "0.84253"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-45447\",\"sourceIdentifier\":\"openssl-security@openssl.org\",\"published\":\"2026-06-09T17:17:19.277\",\"lastModified\":\"2026-07-08T13:16:47.377\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Issue summary: A specially crafted PKCS#7 or S/MIME signed message could\\ntrigger a use-after-free during PKCS#7 signature verification.\\n\\nImpact summary: A use-after-free may result in process crashes, heap\\ncorruption, or potentially remote code execution.\\n\\nWhen processing a PKCS#7 or S/MIME signed message, if the SignedData\\ndigestAlgorithms field is present as an empty ASN.1 SET, OpenSSL may\\nincorrectly free a caller-owned BIO during PKCS7_verify(). A subsequent\\nuse of the BIO by the calling application results in a use-after-free\\ncondition.\\n\\nIn the common case this occurs when the application later calls\\nBIO_free() on the BIO originally passed to PKCS7_verify(). Depending\\non allocator behavior and application-specific BIO usage patterns, this\\nmay result in a crash or other memory corruption. In some application\\ncontexts this may potentially be exploitable for remote code execution.\\n\\nApplications that process PKCS#7 or S/MIME signed messages using OpenSSL\\nPKCS#7 APIs may be affected. Applications using the CMS APIs for this\\nprocessing are not affected.\\n\\nThe FIPS modules in 4.0, 3.6, 3.5, 3.4, and 3.0 are not affected by this\\nissue, as the affected code is outside the OpenSSL FIPS module boundary.\"}],\"affected\":[{\"source\":\"openssl-security@openssl.org\",\"affectedData\":[{\"vendor\":\"OpenSSL\",\"product\":\"OpenSSL\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"4.0.0\",\"lessThan\":\"4.0.1\",\"versionType\":\"semver\",\"status\":\"affected\"},{\"version\":\"3.6.0\",\"lessThan\":\"3.6.3\",\"versionType\":\"semver\",\"status\":\"affected\"},{\"version\":\"3.5.0\",\"lessThan\":\"3.5.7\",\"versionType\":\"semver\",\"status\":\"affected\"},{\"version\":\"3.4.0\",\"lessThan\":\"3.4.6\",\"versionType\":\"semver\",\"status\":\"affected\"},{\"version\":\"3.0.0\",\"lessThan\":\"3.0.21\",\"versionType\":\"semver\",\"status\":\"affected\"},{\"version\":\"1.1.1\",\"lessThan\":\"1.1.1zh\",\"versionType\":\"custom\",\"status\":\"affected\"},{\"version\":\"1.0.2\",\"lessThan\":\"1.0.2zq\",\"versionType\":\"custom\",\"status\":\"affected\"}]}]},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"affectedData\":[{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream (v. 10)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:10.2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream (v. 8)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux:8::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream E4S (v.8.8)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_e4s:8.8::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream TUS (v.8.8)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_tus:8.8::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream EUS (v.9.6)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_eus:9.6::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream (v. 9)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux:9::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux BaseOS (v. 10)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:10.2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux BaseOS (v. 8)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:8::baseos\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.6)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:rhel_eus_long_life:8.6::baseos\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux BaseOS E4S (v.8.8)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:rhel_e4s:8.8::baseos\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux BaseOS TUS (v.8.8)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:rhel_tus:8.8::baseos\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux BaseOS (v. 9)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:9::baseos\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Discovery 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:discovery:2::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Insights proxy 1.5\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:insights_proxy:1.5::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Update Infrastructure 5\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhui:5::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:6\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 7\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:7\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 10\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:10\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 8\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:8\"]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.1,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.2,\"impactScore\":5.9}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2026-06-10T03:59:38.212378Z\",\"id\":\"CVE-2026-45447\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"no\"},{\"technicalImpact\":\"total\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"openssl-security@openssl.org\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-825\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.0.2\",\"versionEndExcluding\":\"1.0.2zq\",\"matchCriteriaId\":\"F534B804-67B6-49DA-8A86-0FF21E512908\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.1.1\",\"versionEndExcluding\":\"1.1.1zh\",\"matchCriteriaId\":\"43EFE1E3-4049-4EE6-A2AE-BDBA38E6870F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.0.0\",\"versionEndExcluding\":\"3.0.21\",\"matchCriteriaId\":\"EDB88756-EDFE-4886-A267-3F19342A6042\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.4.0\",\"versionEndExcluding\":\"3.4.6\",\"matchCriteriaId\":\"BF7E21E7-AEC0-4882-B1F1-2D056B506F22\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.5.0\",\"versionEndExcluding\":\"3.5.7\",\"matchCriteriaId\":\"6B6B9930-C549-4D88-9784-AF32CCDDB87A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.6.0\",\"versionEndExcluding\":\"3.6.3\",\"matchCriteriaId\":\"D41B3C45-EC73-4DC8-989D-B2E2792E102F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:4.0.0:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"6E881B9A-1A0A-4BC0-8160-20C00561167D\"}]}]}],\"references\":[{\"url\":\"https://github.com/openssl/openssl/commit/3aad5eb7af4de4ee0633c30a8541a54d9bbde63c\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/openssl/openssl/commit/7d4a980c62258c5910cc883936e0c8dbab4d75a8\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/openssl/openssl/commit/9dfd688ad2290fc5075cacbc9bf0c9a93eefed54\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/openssl/openssl/commit/a541ae8bfe849a30cc885e8780715c0f488e496c\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/openssl/openssl/commit/c505d7559da5d5f9f2c3913c6883a5562ce7273e\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://openssl-library.org/news/secadv/20260609.txt\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25237\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25239\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26275\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26319\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:29197\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:34102\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:35869\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:36215\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:36217\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2026-45447\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2481898\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-45447.json\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()\", \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Important\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 8.1, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10.2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream (v. 10)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream (v. 8)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_e4s:8.8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream E4S (v.8.8)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_tus:8.8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream TUS (v.8.8)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:9.6::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream EUS (v.9.6)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AppStream (v. 9)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10.2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux BaseOS (v. 10)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8::baseos\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux BaseOS (v. 8)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:rhel_eus_long_life:8.6::baseos\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.6)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:rhel_e4s:8.8::baseos\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux BaseOS E4S (v.8.8)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:rhel_tus:8.8::baseos\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux BaseOS TUS (v.8.8)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9::baseos\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux BaseOS (v. 9)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:discovery:2::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Discovery 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:insights_proxy:1.5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Insights proxy 1.5\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhui:5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Update Infrastructure 5\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:6\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"defaultStatus\": \"unaffected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2026-05-27T14:17:46.000Z\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2026-06-09T00:00:00.000Z\", \"value\": \"Made public.\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"RHSA-2026:25237: Red Hat Enterprise Linux AppStream (v. 10), Red Hat Enterprise Linux BaseOS (v. 10)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:36215: Red Hat Enterprise Linux AppStream (v. 8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:36217: Red Hat Enterprise Linux AppStream E4S (v.8.8), Red Hat Enterprise Linux AppStream TUS (v.8.8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:35869: Red Hat Enterprise Linux AppStream EUS (v.9.6)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:25239: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux BaseOS (v. 9)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:26275: Red Hat Enterprise Linux BaseOS (v. 8), Red Hat Enterprise Linux BaseOS E4S (v.8.8), Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.6), Red Hat Enterprise Linux BaseOS TUS (v.8.8)\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:29197: Red Hat Discovery 2\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:34102: Red Hat Insights proxy 1.5\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:26319: Red Hat Update Infrastructure 5\"}], \"x_adpType\": \"supplier\", \"datePublic\": \"2026-06-09T00:00:00.000Z\", \"references\": [{\"url\": \"https://access.redhat.com/security/cve/CVE-2026-45447\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2481898\", \"name\": \"RHBZ#2481898\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-45447.json\", \"tags\": [\"x_sadp-csaf-vex\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25237\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:36215\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:36217\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:35869\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:25239\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26275\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:29197\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:34102\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26319\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.\"}], \"x_generator\": {\"engine\": \"sadp-cli 1.0.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"A flaw was found in OpenSSL. When processing a specially crafted PKCS#7 or S/MIME (Secure/Multipurpose Internet Mail Extensions) signed message, a heap use-after-free vulnerability in the PKCS7_verify() function can be triggered. This occurs if the SignedData digestAlgorithms field is present as an empty ASN.1 SET, leading to incorrect memory deallocation. A remote attacker could exploit this to cause application crashes, memory corruption, or potentially achieve remote code execution.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-825\", \"description\": \"Expired Pointer Dereference\"}]}], \"providerMetadata\": {\"orgId\": \"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\", \"shortName\": \"redhat-SADP\", \"dateUpdated\": \"2026-07-08T12:06:08.977Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 8.8, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-45447\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-06-10T03:59:38.212378Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-06-09T18:36:48.165Z\"}}], \"cna\": {\"title\": \"Heap Use-After-Free in the PKCS7_verify() Function\", \"source\": {\"discovery\": \"UNKNOWN\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"reporter\", \"value\": \"Thai Duong (Calif.io in collaboration with Claude and Anthropic Research)\"}, {\"lang\": \"en\", \"type\": \"remediation developer\", \"value\": \"Igor Ustinov\"}], \"metrics\": [{\"other\": {\"type\": \"https://openssl-library.org/policies/general/security-policy/\", \"content\": {\"text\": \"High\"}}, \"format\": \"other\"}], \"affected\": [{\"vendor\": \"OpenSSL\", \"product\": \"OpenSSL\", \"versions\": [{\"status\": \"affected\", \"version\": \"4.0.0\", \"lessThan\": \"4.0.1\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"3.6.0\", \"lessThan\": \"3.6.3\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"3.5.0\", \"lessThan\": \"3.5.7\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"3.4.0\", \"lessThan\": \"3.4.6\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"3.0.0\", \"lessThan\": \"3.0.21\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"1.1.1\", \"lessThan\": \"1.1.1zh\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"1.0.2\", \"lessThan\": \"1.0.2zq\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}], \"datePublic\": \"2026-06-09T14:00:00.000Z\", \"references\": [{\"url\": \"https://openssl-library.org/news/secadv/20260609.txt\", \"name\": \"OpenSSL Advisory\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://github.com/openssl/openssl/commit/3aad5eb7af4de4ee0633c30a8541a54d9bbde63c\", \"name\": \"4.0.1 git commit\", \"tags\": [\"patch\"]}, {\"url\": \"https://github.com/openssl/openssl/commit/c505d7559da5d5f9f2c3913c6883a5562ce7273e\", \"name\": \"3.6.3 git commit\", \"tags\": [\"patch\"]}, {\"url\": \"https://github.com/openssl/openssl/commit/7d4a980c62258c5910cc883936e0c8dbab4d75a8\", \"name\": \"3.5.7 git commit\", \"tags\": [\"patch\"]}, {\"url\": \"https://github.com/openssl/openssl/commit/a541ae8bfe849a30cc885e8780715c0f488e496c\", \"name\": \"3.4.6 git commit\", \"tags\": [\"patch\"]}, {\"url\": \"https://github.com/openssl/openssl/commit/9dfd688ad2290fc5075cacbc9bf0c9a93eefed54\", \"name\": \"3.0.21 git commit\", \"tags\": [\"patch\"]}], \"x_generator\": {\"engine\": \"Vulnogram 0.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Issue summary: A specially crafted PKCS#7 or S/MIME signed message could\\ntrigger a use-after-free during PKCS#7 signature verification.\\n\\nImpact summary: A use-after-free may result in process crashes, heap\\ncorruption, or potentially remote code execution.\\n\\nWhen processing a PKCS#7 or S/MIME signed message, if the SignedData\\ndigestAlgorithms field is present as an empty ASN.1 SET, OpenSSL may\\nincorrectly free a caller-owned BIO during PKCS7_verify(). A subsequent\\nuse of the BIO by the calling application results in a use-after-free\\ncondition.\\n\\nIn the common case this occurs when the application later calls\\nBIO_free() on the BIO originally passed to PKCS7_verify(). Depending\\non allocator behavior and application-specific BIO usage patterns, this\\nmay result in a crash or other memory corruption. In some application\\ncontexts this may potentially be exploitable for remote code execution.\\n\\nApplications that process PKCS#7 or S/MIME signed messages using OpenSSL\\nPKCS#7 APIs may be affected. Applications using the CMS APIs for this\\nprocessing are not affected.\\n\\nThe FIPS modules in 4.0, 3.6, 3.5, 3.4, and 3.0 are not affected by this\\nissue, as the affected code is outside the OpenSSL FIPS module boundary.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Issue summary: A specially crafted PKCS#7 or S/MIME signed message could\u003cbr\u003etrigger a use-after-free during PKCS#7 signature verification.\u003cbr\u003e\u003cbr\u003eImpact summary: A use-after-free may result in process crashes, heap\u003cbr\u003ecorruption, or potentially remote code execution.\u003cbr\u003e\u003cbr\u003eWhen processing a PKCS#7 or S/MIME signed message, if the SignedData\u003cbr\u003edigestAlgorithms field is present as an empty ASN.1 SET, OpenSSL may\u003cbr\u003eincorrectly free a caller-owned BIO during PKCS7_verify(). A subsequent\u003cbr\u003euse of the BIO by the calling application results in a use-after-free\u003cbr\u003econdition.\u003cbr\u003e\u003cbr\u003eIn the common case this occurs when the application later calls\u003cbr\u003eBIO_free() on the BIO originally passed to PKCS7_verify(). Depending\u003cbr\u003eon allocator behavior and application-specific BIO usage patterns, this\u003cbr\u003emay result in a crash or other memory corruption. In some application\u003cbr\u003econtexts this may potentially be exploitable for remote code execution.\u003cbr\u003e\u003cbr\u003eApplications that process PKCS#7 or S/MIME signed messages using OpenSSL\u003cbr\u003ePKCS#7 APIs may be affected. Applications using the CMS APIs for this\u003cbr\u003eprocessing are not affected.\u003cbr\u003e\u003cbr\u003eThe FIPS modules in 4.0, 3.6, 3.5, 3.4, and 3.0 are not affected by this\u003cbr\u003eissue, as the affected code is outside the OpenSSL FIPS module boundary.\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-416\", \"description\": \"CWE-416 Use After Free\"}]}], \"providerMetadata\": {\"orgId\": \"3a12439a-ef3a-4c79-92e6-6081a721f1e5\", \"shortName\": \"openssl\", \"dateUpdated\": \"2026-06-10T07:48:15.381Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-45447\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-07-08T12:06:08.977Z\", \"dateReserved\": \"2026-05-12T14:34:06.277Z\", \"assignerOrgId\": \"3a12439a-ef3a-4c79-92e6-6081a721f1e5\", \"datePublished\": \"2026-06-09T16:03:32.914Z\", \"assignerShortName\": \"openssl\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
SUSE-SU-2026:2404-1
Vulnerability from csaf_suse - Published: 2026-06-16 06:53 - Updated: 2026-06-16 06:53Summary
Security update for openssl-1_1
Severity
Important
Notes
Title of the patch: Security update for openssl-1_1
Description of the patch: This update for openssl-1_1 fixes the following issues:
- CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357).
- CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349).
- CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341).
- CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340).
- CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342).
Patchnames: SUSE-2026-2404,SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2404,SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2404
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
33 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.7 (Medium)
Affected products
Recommended
33 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
33 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.9 (Medium)
Affected products
Recommended
33 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
33 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
25 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for openssl-1_1",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for openssl-1_1 fixes the following issues:\n\n- CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357).\n- CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349).\n- CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341).\n- CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340).\n- CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2404,SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2404,SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2404",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2404-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2404-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262404-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2404-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-June/047340.html"
},
{
"category": "self",
"summary": "SUSE Bug 1266340",
"url": "https://bugzilla.suse.com/1266340"
},
{
"category": "self",
"summary": "SUSE Bug 1266341",
"url": "https://bugzilla.suse.com/1266341"
},
{
"category": "self",
"summary": "SUSE Bug 1266342",
"url": "https://bugzilla.suse.com/1266342"
},
{
"category": "self",
"summary": "SUSE Bug 1266349",
"url": "https://bugzilla.suse.com/1266349"
},
{
"category": "self",
"summary": "SUSE Bug 1266357",
"url": "https://bugzilla.suse.com/1266357"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-34180 page",
"url": "https://www.suse.com/security/cve/CVE-2026-34180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42766 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42766/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-45447 page",
"url": "https://www.suse.com/security/cve/CVE-2026-45447/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-7383 page",
"url": "https://www.suse.com/security/cve/CVE-2026-7383/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-9076 page",
"url": "https://www.suse.com/security/cve/CVE-2026-9076/"
}
],
"title": "Security update for openssl-1_1",
"tracking": {
"current_release_date": "2026-06-16T06:53:51Z",
"generator": {
"date": "2026-06-16T06:53:51Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2404-1",
"initial_release_date": "2026-06-16T06:53:51Z",
"revision_history": [
{
"date": "2026-06-16T06:53:51Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"product": {
"name": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"product_id": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"product": {
"name": "libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"product_id": "libopenssl1_1-1.1.1w-150600.5.32.1.aarch64"
}
},
{
"category": "product_version",
"name": "openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"product": {
"name": "openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"product_id": "openssl-1_1-1.1.1w-150600.5.32.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl-1_1-devel-64bit-1.1.1w-150600.5.32.1.aarch64_ilp32",
"product": {
"name": "libopenssl-1_1-devel-64bit-1.1.1w-150600.5.32.1.aarch64_ilp32",
"product_id": "libopenssl-1_1-devel-64bit-1.1.1w-150600.5.32.1.aarch64_ilp32"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-64bit-1.1.1w-150600.5.32.1.aarch64_ilp32",
"product": {
"name": "libopenssl1_1-64bit-1.1.1w-150600.5.32.1.aarch64_ilp32",
"product_id": "libopenssl1_1-64bit-1.1.1w-150600.5.32.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.i586",
"product": {
"name": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.i586",
"product_id": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.i586"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-1.1.1w-150600.5.32.1.i586",
"product": {
"name": "libopenssl1_1-1.1.1w-150600.5.32.1.i586",
"product_id": "libopenssl1_1-1.1.1w-150600.5.32.1.i586"
}
},
{
"category": "product_version",
"name": "openssl-1_1-1.1.1w-150600.5.32.1.i586",
"product": {
"name": "openssl-1_1-1.1.1w-150600.5.32.1.i586",
"product_id": "openssl-1_1-1.1.1w-150600.5.32.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-1_1-doc-1.1.1w-150600.5.32.1.noarch",
"product": {
"name": "openssl-1_1-doc-1.1.1w-150600.5.32.1.noarch",
"product_id": "openssl-1_1-doc-1.1.1w-150600.5.32.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"product": {
"name": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"product_id": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"product": {
"name": "libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"product_id": "libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le"
}
},
{
"category": "product_version",
"name": "openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"product": {
"name": "openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"product_id": "openssl-1_1-1.1.1w-150600.5.32.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"product": {
"name": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"product_id": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"product": {
"name": "libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"product_id": "libopenssl1_1-1.1.1w-150600.5.32.1.s390x"
}
},
{
"category": "product_version",
"name": "openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"product": {
"name": "openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"product_id": "openssl-1_1-1.1.1w-150600.5.32.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"product": {
"name": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"product_id": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl-1_1-devel-32bit-1.1.1w-150600.5.32.1.x86_64",
"product": {
"name": "libopenssl-1_1-devel-32bit-1.1.1w-150600.5.32.1.x86_64",
"product_id": "libopenssl-1_1-devel-32bit-1.1.1w-150600.5.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"product": {
"name": "libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"product_id": "libopenssl1_1-1.1.1w-150600.5.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"product": {
"name": "libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"product_id": "libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"product": {
"name": "openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"product_id": "openssl-1_1-1.1.1w-150600.5.32.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP6",
"product_id": "SUSE Linux Enterprise Server 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64"
},
"product_reference": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le"
},
"product_reference": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x"
},
"product_reference": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64"
},
"product_reference": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1w-150600.5.32.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64"
},
"product_reference": "libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le"
},
"product_reference": "libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1w-150600.5.32.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.s390x"
},
"product_reference": "libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1w-150600.5.32.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64"
},
"product_reference": "libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64"
},
"product_reference": "libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1w-150600.5.32.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.aarch64"
},
"product_reference": "openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1w-150600.5.32.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le"
},
"product_reference": "openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1w-150600.5.32.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.s390x"
},
"product_reference": "openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1w-150600.5.32.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.x86_64"
},
"product_reference": "openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64"
},
"product_reference": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le"
},
"product_reference": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x"
},
"product_reference": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64"
},
"product_reference": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1w-150600.5.32.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64"
},
"product_reference": "libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le"
},
"product_reference": "libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1w-150600.5.32.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.s390x"
},
"product_reference": "libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1w-150600.5.32.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64"
},
"product_reference": "libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64"
},
"product_reference": "libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1w-150600.5.32.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.aarch64"
},
"product_reference": "openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1w-150600.5.32.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le"
},
"product_reference": "openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1w-150600.5.32.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.s390x"
},
"product_reference": "openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1w-150600.5.32.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64"
},
"product_reference": "openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le"
},
"product_reference": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64"
},
"product_reference": "libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le"
},
"product_reference": "libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1w-150600.5.32.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64"
},
"product_reference": "libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64"
},
"product_reference": "libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1w-150600.5.32.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le"
},
"product_reference": "openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1w-150600.5.32.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64"
},
"product_reference": "openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-34180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-34180"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: Parsing a crafted DER-encoded ASN.1 structure with a primitive\nelement whose content exceeds 2 gigabytes in length may cause a heap buffer\nover-read on 64-bit Unix and Unix-like platforms.\n\nImpact summary: The heap buffer over-read may crash the application (Denial of\nService) or to load into the decoded ASN.1 object contents of memory beyond the\nend of the input buffer. More typically such ASN.1 elements would instead be\ntruncated.\n\nAn integer truncation in OpenSSL\u0027s ASN.1 decoder causes the content length of\nan ASN.1 primitive element to be mishandled when it exceeds 2 gigabytes. In the\nworst case the truncated length is treated as a request to scan the binary\ncontent for a terminating zero byte, possibly causing OpenSSL to read either\nless than or beyond the end of the allocated buffer.\n\nApplications that pass attacker-supplied data to d2i_X509(), d2i_PKCS7(), or\nany other d2i_* decoding function are affected. OpenSSL\u0027s own command-line\ntools are not vulnerable, as data read through the BIO layer is checked before\nit reaches the affected code. The issue only affects 64-bit Unix and Unix-like\nplatforms; 32-bit platforms and 64-bit Windows are not affected.\n\nThe FIPS modules in 4.0, 3.6, 3.5, 3.4 and 3.0 are not affected by this issue,\nas the affected code is outside the OpenSSL FIPS module boundary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-34180",
"url": "https://www.suse.com/security/cve/CVE-2026-34180"
},
{
"category": "external",
"summary": "SUSE Bug 1266342 for CVE-2026-34180",
"url": "https://bugzilla.suse.com/1266342"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-16T06:53:51Z",
"details": "moderate"
}
],
"title": "CVE-2026-34180"
},
{
"cve": "CVE-2026-42766",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42766"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: A specially crafted password-encrypted CMS message\ncan trigger a NULL pointer dereference during CMS decryption.\n\nImpact summary: This NULL pointer dereference leads to an application crash\nand a Denial of Service.\n\nThe CMS PasswordRecipientInfo.keyDerivationAlgorithm field is defined as\nOPTIONAL in the ASN.1 specification and may therefore be absent in specially\ncrafted inputs. During the password-based CMS decryption the OpenSSL\nCMS implementation dereferences this field without first checking whether it\nwas present.\n\nAn attacker who supplies such a CMS message to an application performing\npassword-based CMS decryption can trigger an application crash, leading to\na Denial of Service.\n\nApplications that process password-encrypted CMS messages may be affected.\n\nThe FIPS modules in 4.0, 3.6, 3.5, 3.4, and 3.0 are not affected by this\nissue, as the affected code is outside the OpenSSL FIPS module boundary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42766",
"url": "https://www.suse.com/security/cve/CVE-2026-42766"
},
{
"category": "external",
"summary": "SUSE Bug 1266349 for CVE-2026-42766",
"url": "https://bugzilla.suse.com/1266349"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-16T06:53:51Z",
"details": "moderate"
}
],
"title": "CVE-2026-42766"
},
{
"cve": "CVE-2026-45447",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-45447"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: A specially crafted PKCS#7 or S/MIME signed message could\ntrigger a use-after-free during PKCS#7 signature verification.\n\nImpact summary: A use-after-free may result in process crashes, heap\ncorruption, or potentially remote code execution.\n\nWhen processing a PKCS#7 or S/MIME signed message, if the SignedData\ndigestAlgorithms field is present as an empty ASN.1 SET, OpenSSL may\nincorrectly free a caller-owned BIO during PKCS7_verify(). A subsequent\nuse of the BIO by the calling application results in a use-after-free\ncondition.\n\nIn the common case this occurs when the application later calls\nBIO_free() on the BIO originally passed to PKCS7_verify(). Depending\non allocator behavior and application-specific BIO usage patterns, this\nmay result in a crash or other memory corruption. In some application\ncontexts this may potentially be exploitable for remote code execution.\n\nApplications that process PKCS#7 or S/MIME signed messages using OpenSSL\nPKCS#7 APIs may be affected. Applications using the CMS APIs for this\nprocessing are not affected.\n\nThe FIPS modules in 4.0, 3.6, 3.5, 3.4, and 3.0 are not affected by this\nissue, as the affected code is outside the OpenSSL FIPS module boundary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-45447",
"url": "https://www.suse.com/security/cve/CVE-2026-45447"
},
{
"category": "external",
"summary": "SUSE Bug 1266357 for CVE-2026-45447",
"url": "https://bugzilla.suse.com/1266357"
},
{
"category": "external",
"summary": "SUSE Bug 1266389 for CVE-2026-45447",
"url": "https://bugzilla.suse.com/1266389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-16T06:53:51Z",
"details": "important"
}
],
"title": "CVE-2026-45447"
},
{
"cve": "CVE-2026-7383",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-7383"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: A signed integer overflow when sizing the destination\nbuffer for Unicode output in ASN1_mbstring_ncopy() can lead to a heap\nbuffer overflow.\n\nImpact summary: A heap buffer overflow may lead to a crash or possibly\nattacker controlled code execution or other undefined behaviour.\n\nIn ASN1_mbstring_copy() and ASN1_mbstring_ncopy() the destination\nsize for Unicode output is computed in a signed int: by left shift\nof the input character count for BMPSTRING (UTF-16) and\nUNIVERSALSTRING (UTF-32), and by summing per-character byte counts\nfor UTF8STRING. The calculation overflows when the input reaches\naround 2^30 characters. In the worst case (UNIVERSALSTRING at 2^30\ncharacters) the size wraps to zero, OPENSSL_malloc(1) is called, and\nthe subsequent character copy writes several gigabytes past the\none-byte allocation.\n\nX.509 certificate processing routes through ASN1_STRING_set_by_NID(),\nwhose DIRSTRING_TYPE mask excludes UNIVERSALSTRING and whose per-NID\nsize limits cap the input length; no network protocol or\ncertificate-handling path in OpenSSL exercises the overflow.\nTriggering the bug requires an application that calls\nASN1_mbstring_copy() or ASN1_mbstring_ncopy() directly, or registers\na custom string type via ASN1_STRING_TABLE_add(), with\nattacker-controlled input on the order of half a gigabyte or more.\nFor these reasons this issue was assigned Low severity.\n\nThe FIPS modules in 4.0, 3.6, 3.5, 3.4 and 3.0 are not affected by\nthis issue, as the affected code is outside the OpenSSL FIPS module\nboundary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-7383",
"url": "https://www.suse.com/security/cve/CVE-2026-7383"
},
{
"category": "external",
"summary": "SUSE Bug 1266340 for CVE-2026-7383",
"url": "https://bugzilla.suse.com/1266340"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-16T06:53:51Z",
"details": "moderate"
}
],
"title": "CVE-2026-7383"
},
{
"cve": "CVE-2026-9076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-9076"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: When CMS password-based decryption (RFC 3211 / PWRI key unwrap)\nprocesses attacker-supplied CMS data, an attacker-chosen stream-mode KEK\ncipher can trigger a heap out-of-bounds read in kek_unwrap_key().\n\nImpact summary: A heap buffer over-read may trigger a crash which leads to\nDenial of Service for an application if the input buffer ends at a memory\npage boundary and the following page is unmapped. There is no information\ndisclosure as the over-read bytes are not revealed to the attacker.\n\nThe key unwrapping function performs a check-byte test as specified in the\nRFC that reads 7 bytes from a heap allocation that is based on the wrapped\nkey length from the message. There is a minimum length check based on the\nblock length of the wrapping cipher. However the cipher is selected from\nan OID carried in the attacker\u0027s PWRI keyEncryptionAlgorithm with no\nrequirement that the cipher be a block cipher. When an attacker selects\na stream-mode cipher the guard will be ineffective and the allocated buffer\ncontaining the unwrapped key can be too small to fit the check-bytes\nspecified in the RFC and a buffer over-read can happen.\n\nApplications calling CMS_decrypt() or CMS_decrypt_set1_password()\n(equivalently openssl cms -decrypt -pwri_password ...) on untrusted CMS\ndata are vulnerable to this issue. No password knowledge is required: the\nover-read happens during the unwrap attempt before any authentication\nsucceeds.\n\nThe over-read is limited to a few bytes and is not written to output, so\nthere is no information disclosure. Triggering a crash requires the\nallocation to border unmapped memory, which is unlikely with the normal\nallocator.\n\nThe FIPS modules are not affected by this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-9076",
"url": "https://www.suse.com/security/cve/CVE-2026-9076"
},
{
"category": "external",
"summary": "SUSE Bug 1266341 for CVE-2026-9076",
"url": "https://bugzilla.suse.com/1266341"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.s390x",
"SUSE Linux Enterprise Server 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl-1_1-devel-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libopenssl1_1-32bit-1.1.1w-150600.5.32.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:openssl-1_1-1.1.1w-150600.5.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-16T06:53:51Z",
"details": "moderate"
}
],
"title": "CVE-2026-9076"
}
]
}
SUSE-SU-2026:2405-1
Vulnerability from csaf_suse - Published: 2026-06-16 06:54 - Updated: 2026-06-16 06:54Summary
Security update for openssl-1_1
Severity
Important
Notes
Title of the patch: Security update for openssl-1_1
Description of the patch: This update for openssl-1_1 fixes the following issues:
- CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357).
- CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349).
- CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341).
- CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340).
- CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342).
Patchnames: SUSE-2026-2405,SUSE-SLE-Micro-5.5-2026-2405,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2405,SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2405,SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2405,SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2405
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
92 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.7 (Medium)
Affected products
Recommended
92 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
92 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.9 (Medium)
Affected products
Recommended
92 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
92 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
25 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for openssl-1_1",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for openssl-1_1 fixes the following issues:\n\n- CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357).\n- CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349).\n- CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341).\n- CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340).\n- CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2405,SUSE-SLE-Micro-5.5-2026-2405,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2405,SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2405,SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2405,SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2405",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2405-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2405-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262405-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2405-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-June/047339.html"
},
{
"category": "self",
"summary": "SUSE Bug 1266340",
"url": "https://bugzilla.suse.com/1266340"
},
{
"category": "self",
"summary": "SUSE Bug 1266341",
"url": "https://bugzilla.suse.com/1266341"
},
{
"category": "self",
"summary": "SUSE Bug 1266342",
"url": "https://bugzilla.suse.com/1266342"
},
{
"category": "self",
"summary": "SUSE Bug 1266349",
"url": "https://bugzilla.suse.com/1266349"
},
{
"category": "self",
"summary": "SUSE Bug 1266357",
"url": "https://bugzilla.suse.com/1266357"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-34180 page",
"url": "https://www.suse.com/security/cve/CVE-2026-34180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42766 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42766/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-45447 page",
"url": "https://www.suse.com/security/cve/CVE-2026-45447/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-7383 page",
"url": "https://www.suse.com/security/cve/CVE-2026-7383/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-9076 page",
"url": "https://www.suse.com/security/cve/CVE-2026-9076/"
}
],
"title": "Security update for openssl-1_1",
"tracking": {
"current_release_date": "2026-06-16T06:54:17Z",
"generator": {
"date": "2026-06-16T06:54:17Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2405-1",
"initial_release_date": "2026-06-16T06:54:17Z",
"revision_history": [
{
"date": "2026-06-16T06:54:17Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"product": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"product_id": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"product": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"product_id": "libopenssl1_1-1.1.1l-150500.17.57.2.aarch64"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"product": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"product_id": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64"
}
},
{
"category": "product_version",
"name": "openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"product": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"product_id": "openssl-1_1-1.1.1l-150500.17.57.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl-1_1-devel-64bit-1.1.1l-150500.17.57.2.aarch64_ilp32",
"product": {
"name": "libopenssl-1_1-devel-64bit-1.1.1l-150500.17.57.2.aarch64_ilp32",
"product_id": "libopenssl-1_1-devel-64bit-1.1.1l-150500.17.57.2.aarch64_ilp32"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-64bit-1.1.1l-150500.17.57.2.aarch64_ilp32",
"product": {
"name": "libopenssl1_1-64bit-1.1.1l-150500.17.57.2.aarch64_ilp32",
"product_id": "libopenssl1_1-64bit-1.1.1l-150500.17.57.2.aarch64_ilp32"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-hmac-64bit-1.1.1l-150500.17.57.2.aarch64_ilp32",
"product": {
"name": "libopenssl1_1-hmac-64bit-1.1.1l-150500.17.57.2.aarch64_ilp32",
"product_id": "libopenssl1_1-hmac-64bit-1.1.1l-150500.17.57.2.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.i586",
"product": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.i586",
"product_id": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.i586"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.i586",
"product": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.i586",
"product_id": "libopenssl1_1-1.1.1l-150500.17.57.2.i586"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.i586",
"product": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.i586",
"product_id": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.i586"
}
},
{
"category": "product_version",
"name": "openssl-1_1-1.1.1l-150500.17.57.2.i586",
"product": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.i586",
"product_id": "openssl-1_1-1.1.1l-150500.17.57.2.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-1_1-doc-1.1.1l-150500.17.57.2.noarch",
"product": {
"name": "openssl-1_1-doc-1.1.1l-150500.17.57.2.noarch",
"product_id": "openssl-1_1-doc-1.1.1l-150500.17.57.2.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"product": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"product_id": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"product": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"product_id": "libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"product": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"product_id": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le"
}
},
{
"category": "product_version",
"name": "openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"product": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"product_id": "openssl-1_1-1.1.1l-150500.17.57.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"product": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"product_id": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"product": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"product_id": "libopenssl1_1-1.1.1l-150500.17.57.2.s390x"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"product": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"product_id": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x"
}
},
{
"category": "product_version",
"name": "openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"product": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"product_id": "openssl-1_1-1.1.1l-150500.17.57.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"product": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"product_id": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl-1_1-devel-32bit-1.1.1l-150500.17.57.2.x86_64",
"product": {
"name": "libopenssl-1_1-devel-32bit-1.1.1l-150500.17.57.2.x86_64",
"product_id": "libopenssl-1_1-devel-32bit-1.1.1l-150500.17.57.2.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"product": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"product_id": "libopenssl1_1-1.1.1l-150500.17.57.2.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"product": {
"name": "libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"product_id": "libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"product": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"product_id": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64"
}
},
{
"category": "product_version",
"name": "libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"product": {
"name": "libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"product_id": "libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64"
}
},
{
"category": "product_version",
"name": "openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"product": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"product_id": "openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP5",
"product_id": "SUSE Linux Enterprise Server 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le"
},
"product_reference": "libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x"
},
"product_reference": "libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le"
},
"product_reference": "openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.s390x"
},
"product_reference": "openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le"
},
"product_reference": "libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.s390x"
},
"product_reference": "libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le"
},
"product_reference": "openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.s390x"
},
"product_reference": "openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le"
},
"product_reference": "libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x"
},
"product_reference": "libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64"
},
"product_reference": "openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le"
},
"product_reference": "openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.s390x"
},
"product_reference": "openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le"
},
"product_reference": "libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le"
},
"product_reference": "openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-1.1.1l-150500.17.57.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
},
"product_reference": "openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-34180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-34180"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: Parsing a crafted DER-encoded ASN.1 structure with a primitive\nelement whose content exceeds 2 gigabytes in length may cause a heap buffer\nover-read on 64-bit Unix and Unix-like platforms.\n\nImpact summary: The heap buffer over-read may crash the application (Denial of\nService) or to load into the decoded ASN.1 object contents of memory beyond the\nend of the input buffer. More typically such ASN.1 elements would instead be\ntruncated.\n\nAn integer truncation in OpenSSL\u0027s ASN.1 decoder causes the content length of\nan ASN.1 primitive element to be mishandled when it exceeds 2 gigabytes. In the\nworst case the truncated length is treated as a request to scan the binary\ncontent for a terminating zero byte, possibly causing OpenSSL to read either\nless than or beyond the end of the allocated buffer.\n\nApplications that pass attacker-supplied data to d2i_X509(), d2i_PKCS7(), or\nany other d2i_* decoding function are affected. OpenSSL\u0027s own command-line\ntools are not vulnerable, as data read through the BIO layer is checked before\nit reaches the affected code. The issue only affects 64-bit Unix and Unix-like\nplatforms; 32-bit platforms and 64-bit Windows are not affected.\n\nThe FIPS modules in 4.0, 3.6, 3.5, 3.4 and 3.0 are not affected by this issue,\nas the affected code is outside the OpenSSL FIPS module boundary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-34180",
"url": "https://www.suse.com/security/cve/CVE-2026-34180"
},
{
"category": "external",
"summary": "SUSE Bug 1266342 for CVE-2026-34180",
"url": "https://bugzilla.suse.com/1266342"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-16T06:54:17Z",
"details": "moderate"
}
],
"title": "CVE-2026-34180"
},
{
"cve": "CVE-2026-42766",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42766"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: A specially crafted password-encrypted CMS message\ncan trigger a NULL pointer dereference during CMS decryption.\n\nImpact summary: This NULL pointer dereference leads to an application crash\nand a Denial of Service.\n\nThe CMS PasswordRecipientInfo.keyDerivationAlgorithm field is defined as\nOPTIONAL in the ASN.1 specification and may therefore be absent in specially\ncrafted inputs. During the password-based CMS decryption the OpenSSL\nCMS implementation dereferences this field without first checking whether it\nwas present.\n\nAn attacker who supplies such a CMS message to an application performing\npassword-based CMS decryption can trigger an application crash, leading to\na Denial of Service.\n\nApplications that process password-encrypted CMS messages may be affected.\n\nThe FIPS modules in 4.0, 3.6, 3.5, 3.4, and 3.0 are not affected by this\nissue, as the affected code is outside the OpenSSL FIPS module boundary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42766",
"url": "https://www.suse.com/security/cve/CVE-2026-42766"
},
{
"category": "external",
"summary": "SUSE Bug 1266349 for CVE-2026-42766",
"url": "https://bugzilla.suse.com/1266349"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-16T06:54:17Z",
"details": "moderate"
}
],
"title": "CVE-2026-42766"
},
{
"cve": "CVE-2026-45447",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-45447"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: A specially crafted PKCS#7 or S/MIME signed message could\ntrigger a use-after-free during PKCS#7 signature verification.\n\nImpact summary: A use-after-free may result in process crashes, heap\ncorruption, or potentially remote code execution.\n\nWhen processing a PKCS#7 or S/MIME signed message, if the SignedData\ndigestAlgorithms field is present as an empty ASN.1 SET, OpenSSL may\nincorrectly free a caller-owned BIO during PKCS7_verify(). A subsequent\nuse of the BIO by the calling application results in a use-after-free\ncondition.\n\nIn the common case this occurs when the application later calls\nBIO_free() on the BIO originally passed to PKCS7_verify(). Depending\non allocator behavior and application-specific BIO usage patterns, this\nmay result in a crash or other memory corruption. In some application\ncontexts this may potentially be exploitable for remote code execution.\n\nApplications that process PKCS#7 or S/MIME signed messages using OpenSSL\nPKCS#7 APIs may be affected. Applications using the CMS APIs for this\nprocessing are not affected.\n\nThe FIPS modules in 4.0, 3.6, 3.5, 3.4, and 3.0 are not affected by this\nissue, as the affected code is outside the OpenSSL FIPS module boundary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-45447",
"url": "https://www.suse.com/security/cve/CVE-2026-45447"
},
{
"category": "external",
"summary": "SUSE Bug 1266357 for CVE-2026-45447",
"url": "https://bugzilla.suse.com/1266357"
},
{
"category": "external",
"summary": "SUSE Bug 1266389 for CVE-2026-45447",
"url": "https://bugzilla.suse.com/1266389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-16T06:54:17Z",
"details": "important"
}
],
"title": "CVE-2026-45447"
},
{
"cve": "CVE-2026-7383",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-7383"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: A signed integer overflow when sizing the destination\nbuffer for Unicode output in ASN1_mbstring_ncopy() can lead to a heap\nbuffer overflow.\n\nImpact summary: A heap buffer overflow may lead to a crash or possibly\nattacker controlled code execution or other undefined behaviour.\n\nIn ASN1_mbstring_copy() and ASN1_mbstring_ncopy() the destination\nsize for Unicode output is computed in a signed int: by left shift\nof the input character count for BMPSTRING (UTF-16) and\nUNIVERSALSTRING (UTF-32), and by summing per-character byte counts\nfor UTF8STRING. The calculation overflows when the input reaches\naround 2^30 characters. In the worst case (UNIVERSALSTRING at 2^30\ncharacters) the size wraps to zero, OPENSSL_malloc(1) is called, and\nthe subsequent character copy writes several gigabytes past the\none-byte allocation.\n\nX.509 certificate processing routes through ASN1_STRING_set_by_NID(),\nwhose DIRSTRING_TYPE mask excludes UNIVERSALSTRING and whose per-NID\nsize limits cap the input length; no network protocol or\ncertificate-handling path in OpenSSL exercises the overflow.\nTriggering the bug requires an application that calls\nASN1_mbstring_copy() or ASN1_mbstring_ncopy() directly, or registers\na custom string type via ASN1_STRING_TABLE_add(), with\nattacker-controlled input on the order of half a gigabyte or more.\nFor these reasons this issue was assigned Low severity.\n\nThe FIPS modules in 4.0, 3.6, 3.5, 3.4 and 3.0 are not affected by\nthis issue, as the affected code is outside the OpenSSL FIPS module\nboundary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-7383",
"url": "https://www.suse.com/security/cve/CVE-2026-7383"
},
{
"category": "external",
"summary": "SUSE Bug 1266340 for CVE-2026-7383",
"url": "https://bugzilla.suse.com/1266340"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-16T06:54:17Z",
"details": "moderate"
}
],
"title": "CVE-2026-7383"
},
{
"cve": "CVE-2026-9076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-9076"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: When CMS password-based decryption (RFC 3211 / PWRI key unwrap)\nprocesses attacker-supplied CMS data, an attacker-chosen stream-mode KEK\ncipher can trigger a heap out-of-bounds read in kek_unwrap_key().\n\nImpact summary: A heap buffer over-read may trigger a crash which leads to\nDenial of Service for an application if the input buffer ends at a memory\npage boundary and the following page is unmapped. There is no information\ndisclosure as the over-read bytes are not revealed to the attacker.\n\nThe key unwrapping function performs a check-byte test as specified in the\nRFC that reads 7 bytes from a heap allocation that is based on the wrapped\nkey length from the message. There is a minimum length check based on the\nblock length of the wrapping cipher. However the cipher is selected from\nan OID carried in the attacker\u0027s PWRI keyEncryptionAlgorithm with no\nrequirement that the cipher be a block cipher. When an attacker selects\na stream-mode cipher the guard will be ineffective and the allocated buffer\ncontaining the unwrapped key can be too small to fit the check-bytes\nspecified in the RFC and a buffer over-read can happen.\n\nApplications calling CMS_decrypt() or CMS_decrypt_set1_password()\n(equivalently openssl cms -decrypt -pwri_password ...) on untrusted CMS\ndata are vulnerable to this issue. No password knowledge is required: the\nover-read happens during the unwrap attempt before any authentication\nsucceeds.\n\nThe over-read is limited to a few bytes and is not written to output, so\nthere is no information disclosure. Triggering a crash requires the\nallocation to border unmapped memory, which is unlikely with the normal\nallocator.\n\nThe FIPS modules are not affected by this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-9076",
"url": "https://www.suse.com/security/cve/CVE-2026-9076"
},
{
"category": "external",
"summary": "SUSE Bug 1266341 for CVE-2026-9076",
"url": "https://bugzilla.suse.com/1266341"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Micro 5.5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.s390x",
"SUSE Linux Enterprise Server 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl-1_1-devel-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libopenssl1_1-hmac-32bit-1.1.1l-150500.17.57.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:openssl-1_1-1.1.1l-150500.17.57.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-16T06:54:17Z",
"details": "moderate"
}
],
"title": "CVE-2026-9076"
}
]
}
SUSE-SU-2026:2409-1
Vulnerability from csaf_suse - Published: 2026-06-16 08:07 - Updated: 2026-06-16 08:07Summary
Security update for openssl-1_1-livepatches
Severity
Important
Notes
Title of the patch: Security update for openssl-1_1-livepatches
Description of the patch: This update for openssl-1_1-livepatches fixes the following issues
- CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357).
Patchnames: SUSE-2026-2409,SUSE-SLE-Module-Live-Patching-15-SP5-2026-2409
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:openssl-1_1-livepatches-0.6-150500.6.14.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
10 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for openssl-1_1-livepatches",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for openssl-1_1-livepatches fixes the following issues\n\n- CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2409,SUSE-SLE-Module-Live-Patching-15-SP5-2026-2409",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2409-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2409-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262409-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2409-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-June/047335.html"
},
{
"category": "self",
"summary": "SUSE Bug 1266357",
"url": "https://bugzilla.suse.com/1266357"
},
{
"category": "self",
"summary": "SUSE Bug 1266389",
"url": "https://bugzilla.suse.com/1266389"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-45447 page",
"url": "https://www.suse.com/security/cve/CVE-2026-45447/"
}
],
"title": "Security update for openssl-1_1-livepatches",
"tracking": {
"current_release_date": "2026-06-16T08:07:15Z",
"generator": {
"date": "2026-06-16T08:07:15Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2409-1",
"initial_release_date": "2026-06-16T08:07:15Z",
"revision_history": [
{
"date": "2026-06-16T08:07:15Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "openssl-1_1-livepatches-0.6-150500.6.14.1.x86_64",
"product": {
"name": "openssl-1_1-livepatches-0.6-150500.6.14.1.x86_64",
"product_id": "openssl-1_1-livepatches-0.6-150500.6.14.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-livepatches-0.6-150500.6.14.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5:openssl-1_1-livepatches-0.6-150500.6.14.1.x86_64"
},
"product_reference": "openssl-1_1-livepatches-0.6-150500.6.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-45447",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-45447"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: A specially crafted PKCS#7 or S/MIME signed message could\ntrigger a use-after-free during PKCS#7 signature verification.\n\nImpact summary: A use-after-free may result in process crashes, heap\ncorruption, or potentially remote code execution.\n\nWhen processing a PKCS#7 or S/MIME signed message, if the SignedData\ndigestAlgorithms field is present as an empty ASN.1 SET, OpenSSL may\nincorrectly free a caller-owned BIO during PKCS7_verify(). A subsequent\nuse of the BIO by the calling application results in a use-after-free\ncondition.\n\nIn the common case this occurs when the application later calls\nBIO_free() on the BIO originally passed to PKCS7_verify(). Depending\non allocator behavior and application-specific BIO usage patterns, this\nmay result in a crash or other memory corruption. In some application\ncontexts this may potentially be exploitable for remote code execution.\n\nApplications that process PKCS#7 or S/MIME signed messages using OpenSSL\nPKCS#7 APIs may be affected. Applications using the CMS APIs for this\nprocessing are not affected.\n\nThe FIPS modules in 4.0, 3.6, 3.5, 3.4, and 3.0 are not affected by this\nissue, as the affected code is outside the OpenSSL FIPS module boundary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:openssl-1_1-livepatches-0.6-150500.6.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-45447",
"url": "https://www.suse.com/security/cve/CVE-2026-45447"
},
{
"category": "external",
"summary": "SUSE Bug 1266357 for CVE-2026-45447",
"url": "https://bugzilla.suse.com/1266357"
},
{
"category": "external",
"summary": "SUSE Bug 1266389 for CVE-2026-45447",
"url": "https://bugzilla.suse.com/1266389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:openssl-1_1-livepatches-0.6-150500.6.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:openssl-1_1-livepatches-0.6-150500.6.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-16T08:07:15Z",
"details": "important"
}
],
"title": "CVE-2026-45447"
}
]
}
SUSE-SU-2026:2410-1
Vulnerability from csaf_suse - Published: 2026-06-16 08:07 - Updated: 2026-06-16 08:07Summary
Security update for openssl-1_1-livepatches
Severity
Important
Notes
Title of the patch: Security update for openssl-1_1-livepatches
Description of the patch: This update for openssl-1_1-livepatches fixes the following issues
- CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357).
Patchnames: SUSE-2026-2410,SUSE-SLE-Module-Live-Patching-15-SP6-2026-2410
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP6:openssl-1_1-livepatches-0.6-150600.11.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
10 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for openssl-1_1-livepatches",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for openssl-1_1-livepatches fixes the following issues\n\n- CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2410,SUSE-SLE-Module-Live-Patching-15-SP6-2026-2410",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2410-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2410-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262410-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2410-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-June/047334.html"
},
{
"category": "self",
"summary": "SUSE Bug 1266357",
"url": "https://bugzilla.suse.com/1266357"
},
{
"category": "self",
"summary": "SUSE Bug 1266389",
"url": "https://bugzilla.suse.com/1266389"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-45447 page",
"url": "https://www.suse.com/security/cve/CVE-2026-45447/"
}
],
"title": "Security update for openssl-1_1-livepatches",
"tracking": {
"current_release_date": "2026-06-16T08:07:23Z",
"generator": {
"date": "2026-06-16T08:07:23Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2410-1",
"initial_release_date": "2026-06-16T08:07:23Z",
"revision_history": [
{
"date": "2026-06-16T08:07:23Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "openssl-1_1-livepatches-0.6-150600.11.6.1.x86_64",
"product": {
"name": "openssl-1_1-livepatches-0.6-150600.11.6.1.x86_64",
"product_id": "openssl-1_1-livepatches-0.6-150600.11.6.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-livepatches-0.6-150600.11.6.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:openssl-1_1-livepatches-0.6-150600.11.6.1.x86_64"
},
"product_reference": "openssl-1_1-livepatches-0.6-150600.11.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-45447",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-45447"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: A specially crafted PKCS#7 or S/MIME signed message could\ntrigger a use-after-free during PKCS#7 signature verification.\n\nImpact summary: A use-after-free may result in process crashes, heap\ncorruption, or potentially remote code execution.\n\nWhen processing a PKCS#7 or S/MIME signed message, if the SignedData\ndigestAlgorithms field is present as an empty ASN.1 SET, OpenSSL may\nincorrectly free a caller-owned BIO during PKCS7_verify(). A subsequent\nuse of the BIO by the calling application results in a use-after-free\ncondition.\n\nIn the common case this occurs when the application later calls\nBIO_free() on the BIO originally passed to PKCS7_verify(). Depending\non allocator behavior and application-specific BIO usage patterns, this\nmay result in a crash or other memory corruption. In some application\ncontexts this may potentially be exploitable for remote code execution.\n\nApplications that process PKCS#7 or S/MIME signed messages using OpenSSL\nPKCS#7 APIs may be affected. Applications using the CMS APIs for this\nprocessing are not affected.\n\nThe FIPS modules in 4.0, 3.6, 3.5, 3.4, and 3.0 are not affected by this\nissue, as the affected code is outside the OpenSSL FIPS module boundary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:openssl-1_1-livepatches-0.6-150600.11.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-45447",
"url": "https://www.suse.com/security/cve/CVE-2026-45447"
},
{
"category": "external",
"summary": "SUSE Bug 1266357 for CVE-2026-45447",
"url": "https://bugzilla.suse.com/1266357"
},
{
"category": "external",
"summary": "SUSE Bug 1266389 for CVE-2026-45447",
"url": "https://bugzilla.suse.com/1266389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:openssl-1_1-livepatches-0.6-150600.11.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:openssl-1_1-livepatches-0.6-150600.11.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-16T08:07:23Z",
"details": "important"
}
],
"title": "CVE-2026-45447"
}
]
}
SUSE-SU-2026:2411-1
Vulnerability from csaf_suse - Published: 2026-06-16 08:07 - Updated: 2026-06-16 08:07Summary
Security update for openssl-3-livepatches
Severity
Critical
Notes
Title of the patch: Security update for openssl-3-livepatches
Description of the patch: This update for openssl-3-livepatches fixes the following issues:
- CVE-2025-11187: Improper validation of PBMAC1 parameters in PKCS#12 MAC verification (bsc#1256878).
- CVE-2025-15467: Stack buffer overflow in CMS AuthEnvelopedData parsing (bsc#1256876).
- CVE-2025-15468: NULL dereference in SSL_CIPHER_find() function on unknown cipher ID (bsc#1256880).
- CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266389, bsc#1266357).
Patchnames: SUSE-2026-2411,SUSE-SLE-Module-Live-Patching-15-SP6-2026-2411
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP6:openssl-3-livepatches-0.4-150600.13.11.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
9.8 (Critical)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP6:openssl-3-livepatches-0.4-150600.13.11.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
7.5 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP6:openssl-3-livepatches-0.4-150600.13.11.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP6:openssl-3-livepatches-0.4-150600.13.11.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
25 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for openssl-3-livepatches",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for openssl-3-livepatches fixes the following issues:\n\n- CVE-2025-11187: Improper validation of PBMAC1 parameters in PKCS#12 MAC verification (bsc#1256878).\n- CVE-2025-15467: Stack buffer overflow in CMS AuthEnvelopedData parsing (bsc#1256876).\n- CVE-2025-15468: NULL dereference in SSL_CIPHER_find() function on unknown cipher ID (bsc#1256880).\n- CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266389, bsc#1266357).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2411,SUSE-SLE-Module-Live-Patching-15-SP6-2026-2411",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2411-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2411-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262411-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2411-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-June/047333.html"
},
{
"category": "self",
"summary": "SUSE Bug 1256876",
"url": "https://bugzilla.suse.com/1256876"
},
{
"category": "self",
"summary": "SUSE Bug 1256878",
"url": "https://bugzilla.suse.com/1256878"
},
{
"category": "self",
"summary": "SUSE Bug 1256880",
"url": "https://bugzilla.suse.com/1256880"
},
{
"category": "self",
"summary": "SUSE Bug 1266357",
"url": "https://bugzilla.suse.com/1266357"
},
{
"category": "self",
"summary": "SUSE Bug 1266389",
"url": "https://bugzilla.suse.com/1266389"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-11187 page",
"url": "https://www.suse.com/security/cve/CVE-2025-11187/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-15467 page",
"url": "https://www.suse.com/security/cve/CVE-2025-15467/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-15468 page",
"url": "https://www.suse.com/security/cve/CVE-2025-15468/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-45447 page",
"url": "https://www.suse.com/security/cve/CVE-2026-45447/"
}
],
"title": "Security update for openssl-3-livepatches",
"tracking": {
"current_release_date": "2026-06-16T08:07:30Z",
"generator": {
"date": "2026-06-16T08:07:30Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2411-1",
"initial_release_date": "2026-06-16T08:07:30Z",
"revision_history": [
{
"date": "2026-06-16T08:07:30Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "openssl-3-livepatches-0.4-150600.13.11.1.x86_64",
"product": {
"name": "openssl-3-livepatches-0.4-150600.13.11.1.x86_64",
"product_id": "openssl-3-livepatches-0.4-150600.13.11.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-3-livepatches-0.4-150600.13.11.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP6",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP6:openssl-3-livepatches-0.4-150600.13.11.1.x86_64"
},
"product_reference": "openssl-3-livepatches-0.4-150600.13.11.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-11187",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-11187"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: PBMAC1 parameters in PKCS#12 files are missing validation\nwhich can trigger a stack-based buffer overflow, invalid pointer or NULL\npointer dereference during MAC verification.\n\nImpact summary: The stack buffer overflow or NULL pointer dereference may\ncause a crash leading to Denial of Service for an application that parses\nuntrusted PKCS#12 files. The buffer overflow may also potentially enable\ncode execution depending on platform mitigations.\n\nWhen verifying a PKCS#12 file that uses PBMAC1 for the MAC, the PBKDF2\nsalt and keylength parameters from the file are used without validation.\nIf the value of keylength exceeds the size of the fixed stack buffer used\nfor the derived key (64 bytes), the key derivation will overflow the buffer.\nThe overflow length is attacker-controlled. Also, if the salt parameter is\nnot an OCTET STRING type this can lead to invalid or NULL pointer\ndereference.\n\nExploiting this issue requires a user or application to process\na maliciously crafted PKCS#12 file. It is uncommon to accept untrusted\nPKCS#12 files in applications as they are usually used to store private\nkeys which are trusted by definition. For this reason the issue was assessed\nas Moderate severity.\n\nThe FIPS modules in 3.6, 3.5 and 3.4 are not affected by this issue, as\nPKCS#12 processing is outside the OpenSSL FIPS module boundary.\n\nOpenSSL 3.6, 3.5 and 3.4 are vulnerable to this issue.\n\nOpenSSL 3.3, 3.0, 1.1.1 and 1.0.2 are not affected by this issue as they do\nnot support PBMAC1 in PKCS#12.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:openssl-3-livepatches-0.4-150600.13.11.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-11187",
"url": "https://www.suse.com/security/cve/CVE-2025-11187"
},
{
"category": "external",
"summary": "SUSE Bug 1256829 for CVE-2025-11187",
"url": "https://bugzilla.suse.com/1256829"
},
{
"category": "external",
"summary": "SUSE Bug 1256878 for CVE-2025-11187",
"url": "https://bugzilla.suse.com/1256878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:openssl-3-livepatches-0.4-150600.13.11.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:openssl-3-livepatches-0.4-150600.13.11.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-16T08:07:30Z",
"details": "important"
}
],
"title": "CVE-2025-11187"
},
{
"cve": "CVE-2025-15467",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-15467"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: Parsing CMS AuthEnvelopedData or EnvelopedData message with\nmaliciously crafted AEAD parameters can trigger a stack buffer overflow.\n\nImpact summary: A stack buffer overflow may lead to a crash, causing Denial\nof Service, or potentially remote code execution.\n\nWhen parsing CMS (Auth)EnvelopedData structures that use AEAD ciphers such as\nAES-GCM, the IV (Initialization Vector) encoded in the ASN.1 parameters is\ncopied into a fixed-size stack buffer without verifying that its length fits\nthe destination. An attacker can supply a crafted CMS message with an\noversized IV, causing a stack-based out-of-bounds write before any\nauthentication or tag verification occurs.\n\nApplications and services that parse untrusted CMS or PKCS#7 content using\nAEAD ciphers (e.g., S/MIME (Auth)EnvelopedData with AES-GCM) are vulnerable.\nBecause the overflow occurs prior to authentication, no valid key material\nis required to trigger it. While exploitability to remote code execution\ndepends on platform and toolchain mitigations, the stack-based write\nprimitive represents a severe risk.\n\nThe FIPS modules in 3.6, 3.5, 3.4, 3.3 and 3.0 are not affected by this\nissue, as the CMS implementation is outside the OpenSSL FIPS module\nboundary.\n\nOpenSSL 3.6, 3.5, 3.4, 3.3 and 3.0 are vulnerable to this issue.\n\nOpenSSL 1.1.1 and 1.0.2 are not affected by this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:openssl-3-livepatches-0.4-150600.13.11.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-15467",
"url": "https://www.suse.com/security/cve/CVE-2025-15467"
},
{
"category": "external",
"summary": "SUSE Bug 1256830 for CVE-2025-15467",
"url": "https://bugzilla.suse.com/1256830"
},
{
"category": "external",
"summary": "SUSE Bug 1256876 for CVE-2025-15467",
"url": "https://bugzilla.suse.com/1256876"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:openssl-3-livepatches-0.4-150600.13.11.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:openssl-3-livepatches-0.4-150600.13.11.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-16T08:07:30Z",
"details": "critical"
}
],
"title": "CVE-2025-15467"
},
{
"cve": "CVE-2025-15468",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-15468"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: If an application using the SSL_CIPHER_find() function in\na QUIC protocol client or server receives an unknown cipher suite from\nthe peer, a NULL dereference occurs.\n\nImpact summary: A NULL pointer dereference leads to abnormal termination of\nthe running process causing Denial of Service.\n\nSome applications call SSL_CIPHER_find() from the client_hello_cb callback\non the cipher ID received from the peer. If this is done with an SSL object\nimplementing the QUIC protocol, NULL pointer dereference will happen if\nthe examined cipher ID is unknown or unsupported.\n\nAs it is not very common to call this function in applications using the QUIC \nprotocol and the worst outcome is Denial of Service, the issue was assessed\nas Low severity.\n\nThe vulnerable code was introduced in the 3.2 version with the addition\nof the QUIC protocol support.\n\nThe FIPS modules in 3.6, 3.5, 3.4 and 3.3 are not affected by this issue,\nas the QUIC implementation is outside the OpenSSL FIPS module boundary.\n\nOpenSSL 3.6, 3.5, 3.4 and 3.3 are vulnerable to this issue.\n\nOpenSSL 3.0, 1.1.1 and 1.0.2 are not affected by this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:openssl-3-livepatches-0.4-150600.13.11.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-15468",
"url": "https://www.suse.com/security/cve/CVE-2025-15468"
},
{
"category": "external",
"summary": "SUSE Bug 1256831 for CVE-2025-15468",
"url": "https://bugzilla.suse.com/1256831"
},
{
"category": "external",
"summary": "SUSE Bug 1256880 for CVE-2025-15468",
"url": "https://bugzilla.suse.com/1256880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:openssl-3-livepatches-0.4-150600.13.11.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:openssl-3-livepatches-0.4-150600.13.11.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-16T08:07:30Z",
"details": "important"
}
],
"title": "CVE-2025-15468"
},
{
"cve": "CVE-2026-45447",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-45447"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: A specially crafted PKCS#7 or S/MIME signed message could\ntrigger a use-after-free during PKCS#7 signature verification.\n\nImpact summary: A use-after-free may result in process crashes, heap\ncorruption, or potentially remote code execution.\n\nWhen processing a PKCS#7 or S/MIME signed message, if the SignedData\ndigestAlgorithms field is present as an empty ASN.1 SET, OpenSSL may\nincorrectly free a caller-owned BIO during PKCS7_verify(). A subsequent\nuse of the BIO by the calling application results in a use-after-free\ncondition.\n\nIn the common case this occurs when the application later calls\nBIO_free() on the BIO originally passed to PKCS7_verify(). Depending\non allocator behavior and application-specific BIO usage patterns, this\nmay result in a crash or other memory corruption. In some application\ncontexts this may potentially be exploitable for remote code execution.\n\nApplications that process PKCS#7 or S/MIME signed messages using OpenSSL\nPKCS#7 APIs may be affected. Applications using the CMS APIs for this\nprocessing are not affected.\n\nThe FIPS modules in 4.0, 3.6, 3.5, 3.4, and 3.0 are not affected by this\nissue, as the affected code is outside the OpenSSL FIPS module boundary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP6:openssl-3-livepatches-0.4-150600.13.11.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-45447",
"url": "https://www.suse.com/security/cve/CVE-2026-45447"
},
{
"category": "external",
"summary": "SUSE Bug 1266357 for CVE-2026-45447",
"url": "https://bugzilla.suse.com/1266357"
},
{
"category": "external",
"summary": "SUSE Bug 1266389 for CVE-2026-45447",
"url": "https://bugzilla.suse.com/1266389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP6:openssl-3-livepatches-0.4-150600.13.11.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP6:openssl-3-livepatches-0.4-150600.13.11.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-16T08:07:30Z",
"details": "important"
}
],
"title": "CVE-2026-45447"
}
]
}
SUSE-SU-2026:2412-1
Vulnerability from csaf_suse - Published: 2026-06-16 08:07 - Updated: 2026-06-16 08:07Summary
Security update for openssl-1_1-livepatches
Severity
Important
Notes
Title of the patch: Security update for openssl-1_1-livepatches
Description of the patch: This update for openssl-1_1-livepatches fixes the following issues
- CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357).
Patchnames: SUSE-2026-2412,SUSE-SLE-Module-Live-Patching-15-SP7-2026-2412
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP7:openssl-1_1-livepatches-0.6-150700.13.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP7:openssl-1_1-livepatches-0.6-150700.13.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
10 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for openssl-1_1-livepatches",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for openssl-1_1-livepatches fixes the following issues\n\n- CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2412,SUSE-SLE-Module-Live-Patching-15-SP7-2026-2412",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2412-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2412-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262412-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2412-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-June/047332.html"
},
{
"category": "self",
"summary": "SUSE Bug 1266357",
"url": "https://bugzilla.suse.com/1266357"
},
{
"category": "self",
"summary": "SUSE Bug 1266389",
"url": "https://bugzilla.suse.com/1266389"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-45447 page",
"url": "https://www.suse.com/security/cve/CVE-2026-45447/"
}
],
"title": "Security update for openssl-1_1-livepatches",
"tracking": {
"current_release_date": "2026-06-16T08:07:36Z",
"generator": {
"date": "2026-06-16T08:07:36Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2412-1",
"initial_release_date": "2026-06-16T08:07:36Z",
"revision_history": [
{
"date": "2026-06-16T08:07:36Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "openssl-1_1-livepatches-0.6-150700.13.6.1.ppc64le",
"product": {
"name": "openssl-1_1-livepatches-0.6-150700.13.6.1.ppc64le",
"product_id": "openssl-1_1-livepatches-0.6-150700.13.6.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-1_1-livepatches-0.6-150700.13.6.1.x86_64",
"product": {
"name": "openssl-1_1-livepatches-0.6-150700.13.6.1.x86_64",
"product_id": "openssl-1_1-livepatches-0.6-150700.13.6.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP7",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp7"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-livepatches-0.6-150700.13.6.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP7",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP7:openssl-1_1-livepatches-0.6-150700.13.6.1.ppc64le"
},
"product_reference": "openssl-1_1-livepatches-0.6-150700.13.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-livepatches-0.6-150700.13.6.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP7",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP7:openssl-1_1-livepatches-0.6-150700.13.6.1.x86_64"
},
"product_reference": "openssl-1_1-livepatches-0.6-150700.13.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-45447",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-45447"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: A specially crafted PKCS#7 or S/MIME signed message could\ntrigger a use-after-free during PKCS#7 signature verification.\n\nImpact summary: A use-after-free may result in process crashes, heap\ncorruption, or potentially remote code execution.\n\nWhen processing a PKCS#7 or S/MIME signed message, if the SignedData\ndigestAlgorithms field is present as an empty ASN.1 SET, OpenSSL may\nincorrectly free a caller-owned BIO during PKCS7_verify(). A subsequent\nuse of the BIO by the calling application results in a use-after-free\ncondition.\n\nIn the common case this occurs when the application later calls\nBIO_free() on the BIO originally passed to PKCS7_verify(). Depending\non allocator behavior and application-specific BIO usage patterns, this\nmay result in a crash or other memory corruption. In some application\ncontexts this may potentially be exploitable for remote code execution.\n\nApplications that process PKCS#7 or S/MIME signed messages using OpenSSL\nPKCS#7 APIs may be affected. Applications using the CMS APIs for this\nprocessing are not affected.\n\nThe FIPS modules in 4.0, 3.6, 3.5, 3.4, and 3.0 are not affected by this\nissue, as the affected code is outside the OpenSSL FIPS module boundary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-1_1-livepatches-0.6-150700.13.6.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-1_1-livepatches-0.6-150700.13.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-45447",
"url": "https://www.suse.com/security/cve/CVE-2026-45447"
},
{
"category": "external",
"summary": "SUSE Bug 1266357 for CVE-2026-45447",
"url": "https://bugzilla.suse.com/1266357"
},
{
"category": "external",
"summary": "SUSE Bug 1266389 for CVE-2026-45447",
"url": "https://bugzilla.suse.com/1266389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-1_1-livepatches-0.6-150700.13.6.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-1_1-livepatches-0.6-150700.13.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-1_1-livepatches-0.6-150700.13.6.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-1_1-livepatches-0.6-150700.13.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-16T08:07:36Z",
"details": "important"
}
],
"title": "CVE-2026-45447"
}
]
}
SUSE-SU-2026:2621-1
Vulnerability from csaf_suse - Published: 2026-06-24 09:05 - Updated: 2026-06-24 09:05Summary
Security update for openssl-1_1-livepatches
Severity
Important
Notes
Title of the patch: Security update for openssl-1_1-livepatches
Description of the patch: This update for openssl-1_1-livepatches fixes the following issues
- CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357).
Patchnames: SUSE-2026-2621,SUSE-SLE-Module-Live-Patching-15-SP4-2026-2621
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP4:openssl-1_1-livepatches-0.6-150400.3.20.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
11 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for openssl-1_1-livepatches",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for openssl-1_1-livepatches fixes the following issues\n\n- CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2621,SUSE-SLE-Module-Live-Patching-15-SP4-2026-2621",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2621-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2621-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262621-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2621-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-June/047601.html"
},
{
"category": "self",
"summary": "SUSE Bug 1266357",
"url": "https://bugzilla.suse.com/1266357"
},
{
"category": "self",
"summary": "SUSE Bug 1266389",
"url": "https://bugzilla.suse.com/1266389"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-45447 page",
"url": "https://www.suse.com/security/cve/CVE-2026-45447/"
}
],
"title": "Security update for openssl-1_1-livepatches",
"tracking": {
"current_release_date": "2026-06-24T09:05:52Z",
"generator": {
"date": "2026-06-24T09:05:52Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2621-1",
"initial_release_date": "2026-06-24T09:05:52Z",
"revision_history": [
{
"date": "2026-06-24T09:05:52Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "openssl-1_1-livepatches-0.6-150400.3.20.1.x86_64",
"product": {
"name": "openssl-1_1-livepatches-0.6-150400.3.20.1.x86_64",
"product_id": "openssl-1_1-livepatches-0.6-150400.3.20.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP4",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1_1-livepatches-0.6-150400.3.20.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP4",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP4:openssl-1_1-livepatches-0.6-150400.3.20.1.x86_64"
},
"product_reference": "openssl-1_1-livepatches-0.6-150400.3.20.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-45447",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-45447"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: A specially crafted PKCS#7 or S/MIME signed message could\ntrigger a use-after-free during PKCS#7 signature verification.\n\nImpact summary: A use-after-free may result in process crashes, heap\ncorruption, or potentially remote code execution.\n\nWhen processing a PKCS#7 or S/MIME signed message, if the SignedData\ndigestAlgorithms field is present as an empty ASN.1 SET, OpenSSL may\nincorrectly free a caller-owned BIO during PKCS7_verify(). A subsequent\nuse of the BIO by the calling application results in a use-after-free\ncondition.\n\nIn the common case this occurs when the application later calls\nBIO_free() on the BIO originally passed to PKCS7_verify(). Depending\non allocator behavior and application-specific BIO usage patterns, this\nmay result in a crash or other memory corruption. In some application\ncontexts this may potentially be exploitable for remote code execution.\n\nApplications that process PKCS#7 or S/MIME signed messages using OpenSSL\nPKCS#7 APIs may be affected. Applications using the CMS APIs for this\nprocessing are not affected.\n\nThe FIPS modules in 4.0, 3.6, 3.5, 3.4, and 3.0 are not affected by this\nissue, as the affected code is outside the OpenSSL FIPS module boundary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP4:openssl-1_1-livepatches-0.6-150400.3.20.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-45447",
"url": "https://www.suse.com/security/cve/CVE-2026-45447"
},
{
"category": "external",
"summary": "SUSE Bug 1266357 for CVE-2026-45447",
"url": "https://bugzilla.suse.com/1266357"
},
{
"category": "external",
"summary": "SUSE Bug 1266389 for CVE-2026-45447",
"url": "https://bugzilla.suse.com/1266389"
},
{
"category": "external",
"summary": "SUSE Bug 1268888 for CVE-2026-45447",
"url": "https://bugzilla.suse.com/1268888"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP4:openssl-1_1-livepatches-0.6-150400.3.20.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP4:openssl-1_1-livepatches-0.6-150400.3.20.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-24T09:05:52Z",
"details": "important"
}
],
"title": "CVE-2026-45447"
}
]
}
SUSE-SU-2026:2662-1
Vulnerability from csaf_suse - Published: 2026-06-26 13:59 - Updated: 2026-06-26 13:59Summary
Security update for openssl-3-livepatches
Severity
Critical
Notes
Title of the patch: Security update for openssl-3-livepatches
Description of the patch: This update for openssl-3-livepatches fixes the following issues
- CVE-2025-11187: Improper validation of PBMAC1 parameters in PKCS#12 MAC verification (bsc#1256878).
- CVE-2025-15467: Stack buffer overflow in CMS AuthEnvelopedData parsing (bsc#1256876).
- CVE-2025-15468: NULL dereference in SSL_CIPHER_find() function on unknown cipher ID (bsc#1256880).
- CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266389, bsc#1266357).
Patchnames: SUSE-2026-2662,SUSE-SLE-Module-Live-Patching-15-SP7-2026-2662
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
9.8 (Critical)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
7.5 (High)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
26 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for openssl-3-livepatches",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for openssl-3-livepatches fixes the following issues\n\n- CVE-2025-11187: Improper validation of PBMAC1 parameters in PKCS#12 MAC verification (bsc#1256878).\n- CVE-2025-15467: Stack buffer overflow in CMS AuthEnvelopedData parsing (bsc#1256876).\n- CVE-2025-15468: NULL dereference in SSL_CIPHER_find() function on unknown cipher ID (bsc#1256880).\n- CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266389, bsc#1266357).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2662,SUSE-SLE-Module-Live-Patching-15-SP7-2026-2662",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2662-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2662-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262662-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2662-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-June/047652.html"
},
{
"category": "self",
"summary": "SUSE Bug 1256876",
"url": "https://bugzilla.suse.com/1256876"
},
{
"category": "self",
"summary": "SUSE Bug 1256878",
"url": "https://bugzilla.suse.com/1256878"
},
{
"category": "self",
"summary": "SUSE Bug 1256880",
"url": "https://bugzilla.suse.com/1256880"
},
{
"category": "self",
"summary": "SUSE Bug 1266357",
"url": "https://bugzilla.suse.com/1266357"
},
{
"category": "self",
"summary": "SUSE Bug 1266389",
"url": "https://bugzilla.suse.com/1266389"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-11187 page",
"url": "https://www.suse.com/security/cve/CVE-2025-11187/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-15467 page",
"url": "https://www.suse.com/security/cve/CVE-2025-15467/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-15468 page",
"url": "https://www.suse.com/security/cve/CVE-2025-15468/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-45447 page",
"url": "https://www.suse.com/security/cve/CVE-2026-45447/"
}
],
"title": "Security update for openssl-3-livepatches",
"tracking": {
"current_release_date": "2026-06-26T13:59:10Z",
"generator": {
"date": "2026-06-26T13:59:10Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2662-1",
"initial_release_date": "2026-06-26T13:59:10Z",
"revision_history": [
{
"date": "2026-06-26T13:59:10Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "openssl-3-livepatches-0.4-150700.16.6.1.ppc64le",
"product": {
"name": "openssl-3-livepatches-0.4-150700.16.6.1.ppc64le",
"product_id": "openssl-3-livepatches-0.4-150700.16.6.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-3-livepatches-0.4-150700.16.6.1.x86_64",
"product": {
"name": "openssl-3-livepatches-0.4-150700.16.6.1.x86_64",
"product_id": "openssl-3-livepatches-0.4-150700.16.6.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP7",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp7"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-3-livepatches-0.4-150700.16.6.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP7",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.ppc64le"
},
"product_reference": "openssl-3-livepatches-0.4-150700.16.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-3-livepatches-0.4-150700.16.6.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP7",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.x86_64"
},
"product_reference": "openssl-3-livepatches-0.4-150700.16.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-11187",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-11187"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: PBMAC1 parameters in PKCS#12 files are missing validation\nwhich can trigger a stack-based buffer overflow, invalid pointer or NULL\npointer dereference during MAC verification.\n\nImpact summary: The stack buffer overflow or NULL pointer dereference may\ncause a crash leading to Denial of Service for an application that parses\nuntrusted PKCS#12 files. The buffer overflow may also potentially enable\ncode execution depending on platform mitigations.\n\nWhen verifying a PKCS#12 file that uses PBMAC1 for the MAC, the PBKDF2\nsalt and keylength parameters from the file are used without validation.\nIf the value of keylength exceeds the size of the fixed stack buffer used\nfor the derived key (64 bytes), the key derivation will overflow the buffer.\nThe overflow length is attacker-controlled. Also, if the salt parameter is\nnot an OCTET STRING type this can lead to invalid or NULL pointer\ndereference.\n\nExploiting this issue requires a user or application to process\na maliciously crafted PKCS#12 file. It is uncommon to accept untrusted\nPKCS#12 files in applications as they are usually used to store private\nkeys which are trusted by definition. For this reason the issue was assessed\nas Moderate severity.\n\nThe FIPS modules in 3.6, 3.5 and 3.4 are not affected by this issue, as\nPKCS#12 processing is outside the OpenSSL FIPS module boundary.\n\nOpenSSL 3.6, 3.5 and 3.4 are vulnerable to this issue.\n\nOpenSSL 3.3, 3.0, 1.1.1 and 1.0.2 are not affected by this issue as they do\nnot support PBMAC1 in PKCS#12.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-11187",
"url": "https://www.suse.com/security/cve/CVE-2025-11187"
},
{
"category": "external",
"summary": "SUSE Bug 1256829 for CVE-2025-11187",
"url": "https://bugzilla.suse.com/1256829"
},
{
"category": "external",
"summary": "SUSE Bug 1256878 for CVE-2025-11187",
"url": "https://bugzilla.suse.com/1256878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-26T13:59:10Z",
"details": "important"
}
],
"title": "CVE-2025-11187"
},
{
"cve": "CVE-2025-15467",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-15467"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: Parsing CMS AuthEnvelopedData or EnvelopedData message with\nmaliciously crafted AEAD parameters can trigger a stack buffer overflow.\n\nImpact summary: A stack buffer overflow may lead to a crash, causing Denial\nof Service, or potentially remote code execution.\n\nWhen parsing CMS (Auth)EnvelopedData structures that use AEAD ciphers such as\nAES-GCM, the IV (Initialization Vector) encoded in the ASN.1 parameters is\ncopied into a fixed-size stack buffer without verifying that its length fits\nthe destination. An attacker can supply a crafted CMS message with an\noversized IV, causing a stack-based out-of-bounds write before any\nauthentication or tag verification occurs.\n\nApplications and services that parse untrusted CMS or PKCS#7 content using\nAEAD ciphers (e.g., S/MIME (Auth)EnvelopedData with AES-GCM) are vulnerable.\nBecause the overflow occurs prior to authentication, no valid key material\nis required to trigger it. While exploitability to remote code execution\ndepends on platform and toolchain mitigations, the stack-based write\nprimitive represents a severe risk.\n\nThe FIPS modules in 3.6, 3.5, 3.4, 3.3 and 3.0 are not affected by this\nissue, as the CMS implementation is outside the OpenSSL FIPS module\nboundary.\n\nOpenSSL 3.6, 3.5, 3.4, 3.3 and 3.0 are vulnerable to this issue.\n\nOpenSSL 1.1.1 and 1.0.2 are not affected by this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-15467",
"url": "https://www.suse.com/security/cve/CVE-2025-15467"
},
{
"category": "external",
"summary": "SUSE Bug 1256830 for CVE-2025-15467",
"url": "https://bugzilla.suse.com/1256830"
},
{
"category": "external",
"summary": "SUSE Bug 1256876 for CVE-2025-15467",
"url": "https://bugzilla.suse.com/1256876"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-26T13:59:10Z",
"details": "critical"
}
],
"title": "CVE-2025-15467"
},
{
"cve": "CVE-2025-15468",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-15468"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: If an application using the SSL_CIPHER_find() function in\na QUIC protocol client or server receives an unknown cipher suite from\nthe peer, a NULL dereference occurs.\n\nImpact summary: A NULL pointer dereference leads to abnormal termination of\nthe running process causing Denial of Service.\n\nSome applications call SSL_CIPHER_find() from the client_hello_cb callback\non the cipher ID received from the peer. If this is done with an SSL object\nimplementing the QUIC protocol, NULL pointer dereference will happen if\nthe examined cipher ID is unknown or unsupported.\n\nAs it is not very common to call this function in applications using the QUIC \nprotocol and the worst outcome is Denial of Service, the issue was assessed\nas Low severity.\n\nThe vulnerable code was introduced in the 3.2 version with the addition\nof the QUIC protocol support.\n\nThe FIPS modules in 3.6, 3.5, 3.4 and 3.3 are not affected by this issue,\nas the QUIC implementation is outside the OpenSSL FIPS module boundary.\n\nOpenSSL 3.6, 3.5, 3.4 and 3.3 are vulnerable to this issue.\n\nOpenSSL 3.0, 1.1.1 and 1.0.2 are not affected by this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-15468",
"url": "https://www.suse.com/security/cve/CVE-2025-15468"
},
{
"category": "external",
"summary": "SUSE Bug 1256831 for CVE-2025-15468",
"url": "https://bugzilla.suse.com/1256831"
},
{
"category": "external",
"summary": "SUSE Bug 1256880 for CVE-2025-15468",
"url": "https://bugzilla.suse.com/1256880"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-26T13:59:10Z",
"details": "important"
}
],
"title": "CVE-2025-15468"
},
{
"cve": "CVE-2026-45447",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-45447"
}
],
"notes": [
{
"category": "general",
"text": "Issue summary: A specially crafted PKCS#7 or S/MIME signed message could\ntrigger a use-after-free during PKCS#7 signature verification.\n\nImpact summary: A use-after-free may result in process crashes, heap\ncorruption, or potentially remote code execution.\n\nWhen processing a PKCS#7 or S/MIME signed message, if the SignedData\ndigestAlgorithms field is present as an empty ASN.1 SET, OpenSSL may\nincorrectly free a caller-owned BIO during PKCS7_verify(). A subsequent\nuse of the BIO by the calling application results in a use-after-free\ncondition.\n\nIn the common case this occurs when the application later calls\nBIO_free() on the BIO originally passed to PKCS7_verify(). Depending\non allocator behavior and application-specific BIO usage patterns, this\nmay result in a crash or other memory corruption. In some application\ncontexts this may potentially be exploitable for remote code execution.\n\nApplications that process PKCS#7 or S/MIME signed messages using OpenSSL\nPKCS#7 APIs may be affected. Applications using the CMS APIs for this\nprocessing are not affected.\n\nThe FIPS modules in 4.0, 3.6, 3.5, 3.4, and 3.0 are not affected by this\nissue, as the affected code is outside the OpenSSL FIPS module boundary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-45447",
"url": "https://www.suse.com/security/cve/CVE-2026-45447"
},
{
"category": "external",
"summary": "SUSE Bug 1266357 for CVE-2026-45447",
"url": "https://bugzilla.suse.com/1266357"
},
{
"category": "external",
"summary": "SUSE Bug 1266389 for CVE-2026-45447",
"url": "https://bugzilla.suse.com/1266389"
},
{
"category": "external",
"summary": "SUSE Bug 1268888 for CVE-2026-45447",
"url": "https://bugzilla.suse.com/1268888"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:openssl-3-livepatches-0.4-150700.16.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-26T13:59:10Z",
"details": "important"
}
],
"title": "CVE-2026-45447"
}
]
}
WID-SEC-W-2026-1852
Vulnerability from csaf_certbund - Published: 2026-06-09 22:00 - Updated: 2026-06-29 22:00Summary
OpenSSL: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: OpenSSL ist eine im Quelltext frei verfügbare Bibliothek, die Secure Sockets Layer (SSL) und Transport Layer Security (TLS) implementiert.
Angriff: Ein Angreifer kann mehrere Schwachstellen in OpenSSL ausnutzen, um beliebigen Programmcode auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren oder einen Denial-of-Service-Zustand zu verursachen.
Betroffene Betriebssysteme: - Linux
- Sonstiges
- UNIX
- Windows
Affected products
Known affected
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source OpenSSL <4.0.1
Open Source / OpenSSL
|
<4.0.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Open Source OpenSSL <1.0.2zq
Open Source / OpenSSL
|
<1.0.2zq | ||
|
FreeBSD Project FreeBSD OS
FreeBSD Project
|
cpe:/o:freebsd:freebsd:-
|
— | |
|
Open Source OpenSSL <1.1.1zh
Open Source / OpenSSL
|
<1.1.1zh | ||
|
NetApp FAS
NetApp
|
cpe:/h:netapp:fas:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Open Source OpenSSL <3.0.21
Open Source / OpenSSL
|
<3.0.21 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Open Source OpenSSL <3.4.6
Open Source / OpenSSL
|
<3.4.6 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Open Source OpenSSL <3.5.7
Open Source / OpenSSL
|
<3.5.7 | ||
|
Open Source OpenSSL <3.6.3
Open Source / OpenSSL
|
<3.6.3 | ||
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
NetApp AFF
NetApp
|
cpe:/h:netapp:aff:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— |
Affected products
Known affected
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source OpenSSL <4.0.1
Open Source / OpenSSL
|
<4.0.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Open Source OpenSSL <1.0.2zq
Open Source / OpenSSL
|
<1.0.2zq | ||
|
FreeBSD Project FreeBSD OS
FreeBSD Project
|
cpe:/o:freebsd:freebsd:-
|
— | |
|
Open Source OpenSSL <1.1.1zh
Open Source / OpenSSL
|
<1.1.1zh | ||
|
NetApp FAS
NetApp
|
cpe:/h:netapp:fas:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Open Source OpenSSL <3.0.21
Open Source / OpenSSL
|
<3.0.21 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Open Source OpenSSL <3.4.6
Open Source / OpenSSL
|
<3.4.6 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Open Source OpenSSL <3.5.7
Open Source / OpenSSL
|
<3.5.7 | ||
|
Open Source OpenSSL <3.6.3
Open Source / OpenSSL
|
<3.6.3 | ||
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
NetApp AFF
NetApp
|
cpe:/h:netapp:aff:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— |
Affected products
Known affected
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source OpenSSL <4.0.1
Open Source / OpenSSL
|
<4.0.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Open Source OpenSSL <1.0.2zq
Open Source / OpenSSL
|
<1.0.2zq | ||
|
FreeBSD Project FreeBSD OS
FreeBSD Project
|
cpe:/o:freebsd:freebsd:-
|
— | |
|
Open Source OpenSSL <1.1.1zh
Open Source / OpenSSL
|
<1.1.1zh | ||
|
NetApp FAS
NetApp
|
cpe:/h:netapp:fas:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Open Source OpenSSL <3.0.21
Open Source / OpenSSL
|
<3.0.21 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Open Source OpenSSL <3.4.6
Open Source / OpenSSL
|
<3.4.6 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Open Source OpenSSL <3.5.7
Open Source / OpenSSL
|
<3.5.7 | ||
|
Open Source OpenSSL <3.6.3
Open Source / OpenSSL
|
<3.6.3 | ||
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
NetApp AFF
NetApp
|
cpe:/h:netapp:aff:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— |
Affected products
Known affected
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source OpenSSL <4.0.1
Open Source / OpenSSL
|
<4.0.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Open Source OpenSSL <1.0.2zq
Open Source / OpenSSL
|
<1.0.2zq | ||
|
FreeBSD Project FreeBSD OS
FreeBSD Project
|
cpe:/o:freebsd:freebsd:-
|
— | |
|
Open Source OpenSSL <1.1.1zh
Open Source / OpenSSL
|
<1.1.1zh | ||
|
NetApp FAS
NetApp
|
cpe:/h:netapp:fas:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Open Source OpenSSL <3.0.21
Open Source / OpenSSL
|
<3.0.21 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Open Source OpenSSL <3.4.6
Open Source / OpenSSL
|
<3.4.6 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Open Source OpenSSL <3.5.7
Open Source / OpenSSL
|
<3.5.7 | ||
|
Open Source OpenSSL <3.6.3
Open Source / OpenSSL
|
<3.6.3 | ||
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
NetApp AFF
NetApp
|
cpe:/h:netapp:aff:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— |
Affected products
Known affected
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source OpenSSL <4.0.1
Open Source / OpenSSL
|
<4.0.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Open Source OpenSSL <1.0.2zq
Open Source / OpenSSL
|
<1.0.2zq | ||
|
FreeBSD Project FreeBSD OS
FreeBSD Project
|
cpe:/o:freebsd:freebsd:-
|
— | |
|
Open Source OpenSSL <1.1.1zh
Open Source / OpenSSL
|
<1.1.1zh | ||
|
NetApp FAS
NetApp
|
cpe:/h:netapp:fas:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Open Source OpenSSL <3.0.21
Open Source / OpenSSL
|
<3.0.21 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Open Source OpenSSL <3.4.6
Open Source / OpenSSL
|
<3.4.6 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Open Source OpenSSL <3.5.7
Open Source / OpenSSL
|
<3.5.7 | ||
|
Open Source OpenSSL <3.6.3
Open Source / OpenSSL
|
<3.6.3 | ||
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
NetApp AFF
NetApp
|
cpe:/h:netapp:aff:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— |
Affected products
Known affected
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source OpenSSL <4.0.1
Open Source / OpenSSL
|
<4.0.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Open Source OpenSSL <1.0.2zq
Open Source / OpenSSL
|
<1.0.2zq | ||
|
FreeBSD Project FreeBSD OS
FreeBSD Project
|
cpe:/o:freebsd:freebsd:-
|
— | |
|
Open Source OpenSSL <1.1.1zh
Open Source / OpenSSL
|
<1.1.1zh | ||
|
NetApp FAS
NetApp
|
cpe:/h:netapp:fas:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Open Source OpenSSL <3.0.21
Open Source / OpenSSL
|
<3.0.21 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Open Source OpenSSL <3.4.6
Open Source / OpenSSL
|
<3.4.6 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Open Source OpenSSL <3.5.7
Open Source / OpenSSL
|
<3.5.7 | ||
|
Open Source OpenSSL <3.6.3
Open Source / OpenSSL
|
<3.6.3 | ||
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
NetApp AFF
NetApp
|
cpe:/h:netapp:aff:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— |
Affected products
Known affected
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source OpenSSL <4.0.1
Open Source / OpenSSL
|
<4.0.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Open Source OpenSSL <1.0.2zq
Open Source / OpenSSL
|
<1.0.2zq | ||
|
FreeBSD Project FreeBSD OS
FreeBSD Project
|
cpe:/o:freebsd:freebsd:-
|
— | |
|
Open Source OpenSSL <1.1.1zh
Open Source / OpenSSL
|
<1.1.1zh | ||
|
NetApp FAS
NetApp
|
cpe:/h:netapp:fas:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Open Source OpenSSL <3.0.21
Open Source / OpenSSL
|
<3.0.21 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Open Source OpenSSL <3.4.6
Open Source / OpenSSL
|
<3.4.6 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Open Source OpenSSL <3.5.7
Open Source / OpenSSL
|
<3.5.7 | ||
|
Open Source OpenSSL <3.6.3
Open Source / OpenSSL
|
<3.6.3 | ||
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
NetApp AFF
NetApp
|
cpe:/h:netapp:aff:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— |
Affected products
Known affected
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source OpenSSL <4.0.1
Open Source / OpenSSL
|
<4.0.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Open Source OpenSSL <1.0.2zq
Open Source / OpenSSL
|
<1.0.2zq | ||
|
FreeBSD Project FreeBSD OS
FreeBSD Project
|
cpe:/o:freebsd:freebsd:-
|
— | |
|
Open Source OpenSSL <1.1.1zh
Open Source / OpenSSL
|
<1.1.1zh | ||
|
NetApp FAS
NetApp
|
cpe:/h:netapp:fas:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Open Source OpenSSL <3.0.21
Open Source / OpenSSL
|
<3.0.21 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Open Source OpenSSL <3.4.6
Open Source / OpenSSL
|
<3.4.6 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Open Source OpenSSL <3.5.7
Open Source / OpenSSL
|
<3.5.7 | ||
|
Open Source OpenSSL <3.6.3
Open Source / OpenSSL
|
<3.6.3 | ||
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
NetApp AFF
NetApp
|
cpe:/h:netapp:aff:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— |
Affected products
Known affected
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source OpenSSL <4.0.1
Open Source / OpenSSL
|
<4.0.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Open Source OpenSSL <1.0.2zq
Open Source / OpenSSL
|
<1.0.2zq | ||
|
FreeBSD Project FreeBSD OS
FreeBSD Project
|
cpe:/o:freebsd:freebsd:-
|
— | |
|
Open Source OpenSSL <1.1.1zh
Open Source / OpenSSL
|
<1.1.1zh | ||
|
NetApp FAS
NetApp
|
cpe:/h:netapp:fas:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Open Source OpenSSL <3.0.21
Open Source / OpenSSL
|
<3.0.21 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Open Source OpenSSL <3.4.6
Open Source / OpenSSL
|
<3.4.6 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Open Source OpenSSL <3.5.7
Open Source / OpenSSL
|
<3.5.7 | ||
|
Open Source OpenSSL <3.6.3
Open Source / OpenSSL
|
<3.6.3 | ||
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
NetApp AFF
NetApp
|
cpe:/h:netapp:aff:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— |
Affected products
Known affected
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source OpenSSL <4.0.1
Open Source / OpenSSL
|
<4.0.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Open Source OpenSSL <1.0.2zq
Open Source / OpenSSL
|
<1.0.2zq | ||
|
FreeBSD Project FreeBSD OS
FreeBSD Project
|
cpe:/o:freebsd:freebsd:-
|
— | |
|
Open Source OpenSSL <1.1.1zh
Open Source / OpenSSL
|
<1.1.1zh | ||
|
NetApp FAS
NetApp
|
cpe:/h:netapp:fas:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Open Source OpenSSL <3.0.21
Open Source / OpenSSL
|
<3.0.21 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Open Source OpenSSL <3.4.6
Open Source / OpenSSL
|
<3.4.6 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Open Source OpenSSL <3.5.7
Open Source / OpenSSL
|
<3.5.7 | ||
|
Open Source OpenSSL <3.6.3
Open Source / OpenSSL
|
<3.6.3 | ||
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
NetApp AFF
NetApp
|
cpe:/h:netapp:aff:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— |
Affected products
Known affected
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source OpenSSL <4.0.1
Open Source / OpenSSL
|
<4.0.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Open Source OpenSSL <1.0.2zq
Open Source / OpenSSL
|
<1.0.2zq | ||
|
FreeBSD Project FreeBSD OS
FreeBSD Project
|
cpe:/o:freebsd:freebsd:-
|
— | |
|
Open Source OpenSSL <1.1.1zh
Open Source / OpenSSL
|
<1.1.1zh | ||
|
NetApp FAS
NetApp
|
cpe:/h:netapp:fas:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Open Source OpenSSL <3.0.21
Open Source / OpenSSL
|
<3.0.21 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Open Source OpenSSL <3.4.6
Open Source / OpenSSL
|
<3.4.6 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Open Source OpenSSL <3.5.7
Open Source / OpenSSL
|
<3.5.7 | ||
|
Open Source OpenSSL <3.6.3
Open Source / OpenSSL
|
<3.6.3 | ||
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
NetApp AFF
NetApp
|
cpe:/h:netapp:aff:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— |
Affected products
Known affected
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source OpenSSL <4.0.1
Open Source / OpenSSL
|
<4.0.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Open Source OpenSSL <1.0.2zq
Open Source / OpenSSL
|
<1.0.2zq | ||
|
FreeBSD Project FreeBSD OS
FreeBSD Project
|
cpe:/o:freebsd:freebsd:-
|
— | |
|
Open Source OpenSSL <1.1.1zh
Open Source / OpenSSL
|
<1.1.1zh | ||
|
NetApp FAS
NetApp
|
cpe:/h:netapp:fas:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Open Source OpenSSL <3.0.21
Open Source / OpenSSL
|
<3.0.21 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Open Source OpenSSL <3.4.6
Open Source / OpenSSL
|
<3.4.6 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Open Source OpenSSL <3.5.7
Open Source / OpenSSL
|
<3.5.7 | ||
|
Open Source OpenSSL <3.6.3
Open Source / OpenSSL
|
<3.6.3 | ||
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
NetApp AFF
NetApp
|
cpe:/h:netapp:aff:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— |
Affected products
Known affected
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source OpenSSL <4.0.1
Open Source / OpenSSL
|
<4.0.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Open Source OpenSSL <1.0.2zq
Open Source / OpenSSL
|
<1.0.2zq | ||
|
FreeBSD Project FreeBSD OS
FreeBSD Project
|
cpe:/o:freebsd:freebsd:-
|
— | |
|
Open Source OpenSSL <1.1.1zh
Open Source / OpenSSL
|
<1.1.1zh | ||
|
NetApp FAS
NetApp
|
cpe:/h:netapp:fas:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Open Source OpenSSL <3.0.21
Open Source / OpenSSL
|
<3.0.21 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Open Source OpenSSL <3.4.6
Open Source / OpenSSL
|
<3.4.6 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Open Source OpenSSL <3.5.7
Open Source / OpenSSL
|
<3.5.7 | ||
|
Open Source OpenSSL <3.6.3
Open Source / OpenSSL
|
<3.6.3 | ||
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
NetApp AFF
NetApp
|
cpe:/h:netapp:aff:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— |
Affected products
Known affected
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source OpenSSL <4.0.1
Open Source / OpenSSL
|
<4.0.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Open Source OpenSSL <1.0.2zq
Open Source / OpenSSL
|
<1.0.2zq | ||
|
FreeBSD Project FreeBSD OS
FreeBSD Project
|
cpe:/o:freebsd:freebsd:-
|
— | |
|
Open Source OpenSSL <1.1.1zh
Open Source / OpenSSL
|
<1.1.1zh | ||
|
NetApp FAS
NetApp
|
cpe:/h:netapp:fas:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Open Source OpenSSL <3.0.21
Open Source / OpenSSL
|
<3.0.21 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Open Source OpenSSL <3.4.6
Open Source / OpenSSL
|
<3.4.6 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Open Source OpenSSL <3.5.7
Open Source / OpenSSL
|
<3.5.7 | ||
|
Open Source OpenSSL <3.6.3
Open Source / OpenSSL
|
<3.6.3 | ||
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
NetApp AFF
NetApp
|
cpe:/h:netapp:aff:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— |
Affected products
Known affected
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source OpenSSL <4.0.1
Open Source / OpenSSL
|
<4.0.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Open Source OpenSSL <1.0.2zq
Open Source / OpenSSL
|
<1.0.2zq | ||
|
FreeBSD Project FreeBSD OS
FreeBSD Project
|
cpe:/o:freebsd:freebsd:-
|
— | |
|
Open Source OpenSSL <1.1.1zh
Open Source / OpenSSL
|
<1.1.1zh | ||
|
NetApp FAS
NetApp
|
cpe:/h:netapp:fas:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Open Source OpenSSL <3.0.21
Open Source / OpenSSL
|
<3.0.21 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Open Source OpenSSL <3.4.6
Open Source / OpenSSL
|
<3.4.6 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Open Source OpenSSL <3.5.7
Open Source / OpenSSL
|
<3.5.7 | ||
|
Open Source OpenSSL <3.6.3
Open Source / OpenSSL
|
<3.6.3 | ||
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
NetApp AFF
NetApp
|
cpe:/h:netapp:aff:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— |
Affected products
Known affected
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source OpenSSL <4.0.1
Open Source / OpenSSL
|
<4.0.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Open Source OpenSSL <1.0.2zq
Open Source / OpenSSL
|
<1.0.2zq | ||
|
FreeBSD Project FreeBSD OS
FreeBSD Project
|
cpe:/o:freebsd:freebsd:-
|
— | |
|
Open Source OpenSSL <1.1.1zh
Open Source / OpenSSL
|
<1.1.1zh | ||
|
NetApp FAS
NetApp
|
cpe:/h:netapp:fas:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Open Source OpenSSL <3.0.21
Open Source / OpenSSL
|
<3.0.21 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Open Source OpenSSL <3.4.6
Open Source / OpenSSL
|
<3.4.6 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Open Source OpenSSL <3.5.7
Open Source / OpenSSL
|
<3.5.7 | ||
|
Open Source OpenSSL <3.6.3
Open Source / OpenSSL
|
<3.6.3 | ||
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
NetApp AFF
NetApp
|
cpe:/h:netapp:aff:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— |
Affected products
Known affected
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source OpenSSL <4.0.1
Open Source / OpenSSL
|
<4.0.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Open Source OpenSSL <1.0.2zq
Open Source / OpenSSL
|
<1.0.2zq | ||
|
FreeBSD Project FreeBSD OS
FreeBSD Project
|
cpe:/o:freebsd:freebsd:-
|
— | |
|
Open Source OpenSSL <1.1.1zh
Open Source / OpenSSL
|
<1.1.1zh | ||
|
NetApp FAS
NetApp
|
cpe:/h:netapp:fas:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Open Source OpenSSL <3.0.21
Open Source / OpenSSL
|
<3.0.21 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Open Source OpenSSL <3.4.6
Open Source / OpenSSL
|
<3.4.6 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Open Source OpenSSL <3.5.7
Open Source / OpenSSL
|
<3.5.7 | ||
|
Open Source OpenSSL <3.6.3
Open Source / OpenSSL
|
<3.6.3 | ||
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
NetApp AFF
NetApp
|
cpe:/h:netapp:aff:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— |
Affected products
Known affected
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source OpenSSL <4.0.1
Open Source / OpenSSL
|
<4.0.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Open Source OpenSSL <1.0.2zq
Open Source / OpenSSL
|
<1.0.2zq | ||
|
FreeBSD Project FreeBSD OS
FreeBSD Project
|
cpe:/o:freebsd:freebsd:-
|
— | |
|
Open Source OpenSSL <1.1.1zh
Open Source / OpenSSL
|
<1.1.1zh | ||
|
NetApp FAS
NetApp
|
cpe:/h:netapp:fas:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Open Source OpenSSL <3.0.21
Open Source / OpenSSL
|
<3.0.21 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Open Source OpenSSL <3.4.6
Open Source / OpenSSL
|
<3.4.6 | ||
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Open Source OpenSSL <3.5.7
Open Source / OpenSSL
|
<3.5.7 | ||
|
Open Source OpenSSL <3.6.3
Open Source / OpenSSL
|
<3.6.3 | ||
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
NetApp AFF
NetApp
|
cpe:/h:netapp:aff:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— |
References
46 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "OpenSSL ist eine im Quelltext frei verf\u00fcgbare Bibliothek, die Secure Sockets Layer (SSL) und Transport Layer Security (TLS) implementiert.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen in OpenSSL ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, Daten zu manipulieren oder einen Denial-of-Service-Zustand zu verursachen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2026-1852 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-1852.json"
},
{
"category": "self",
"summary": "WID-SEC-2026-1852 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1852"
},
{
"category": "external",
"summary": "OpenSSL Security Advisory vom 2026-06-09",
"url": "https://openssl-library.org/news/secadv/20260609.txt"
},
{
"category": "external",
"summary": "OpenSSL Vulnerabilities vom 2026-06-09",
"url": "https://openssl-library.org/news/vulnerabilities/index.html"
},
{
"category": "external",
"summary": "FreeBSD Security Advisory FREEBSD-SA-26:35.OPENSSL vom 2026-06-10",
"url": "https://www.freebsd.org/security/advisories/FreeBSD-SA-26:35.openssl.asc"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-8414-1 vom 2026-06-09",
"url": "https://ubuntu.com/security/notices/USN-8414-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-8414-2 vom 2026-06-09",
"url": "https://ubuntu.com/security/notices/USN-8414-2"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-6335 vom 2026-06-10",
"url": "https://security-tracker.debian.org/tracker/DSA-6335-1"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2026-228373A496 vom 2026-06-10",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-228373a496"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:25239 vom 2026-06-11",
"url": "https://access.redhat.com/errata/RHSA-2026:25239"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:25237 vom 2026-06-11",
"url": "https://access.redhat.com/errata/RHSA-2026:25237"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2026:25237 vom 2026-06-13",
"url": "https://errata.build.resf.org/RLSA-2026:25237"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-4630 vom 2026-06-15",
"url": "https://lists.debian.org/debian-lts-announce/2026/06/msg00019.html"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2026:25239 vom 2026-06-13",
"url": "https://errata.build.resf.org/RLSA-2026:25239"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:2393-1 vom 2026-06-15",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026755.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:2392-1 vom 2026-06-15",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026756.html"
},
{
"category": "external",
"summary": "openSUSE Security Update OPENSUSE-SU-2026:11023-1 vom 2026-06-15",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/YTQ27HDP33LD6AS24REY2JEVD6LKVTQQ/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:2397-1 vom 2026-06-15",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026760.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:2396-1 vom 2026-06-15",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026761.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:2399-1 vom 2026-06-15",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026759.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:2405-1 vom 2026-06-16",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026772.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2026-26275 vom 2026-06-17",
"url": "https://linux.oracle.com/errata/ELSA-2026-26275.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:2403-1 vom 2026-06-16",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026774.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:2404-1 vom 2026-06-16",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026773.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:2409-1 vom 2026-06-16",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026768.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:2410-1 vom 2026-06-16",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026767.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:2411-1 vom 2026-06-16",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026766.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:2412-1 vom 2026-06-16",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026765.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:26275 vom 2026-06-16",
"url": "https://access.redhat.com/errata/RHSA-2026:26275"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2026:26275 vom 2026-06-17",
"url": "https://errata.build.resf.org/RLSA-2026:26275"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:26319 vom 2026-06-16",
"url": "https://access.redhat.com/errata/RHSA-2026:26319"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:22143-1 vom 2026-06-17",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026812.html"
},
{
"category": "external",
"summary": "NetApp Security Advisory NTAP-20260617-0018 vom 2026-06-17",
"url": "https://security.netapp.com/advisory/NTAP-20260617-0018"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:22132-1 vom 2026-06-17",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026811.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2026-50323 vom 2026-06-19",
"url": "https://linux.oracle.com/errata/ELSA-2026-50323.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS2OPENSSL-SNAPSAFE-2026-011 vom 2026-06-22",
"url": "https://alas.aws.amazon.com/AL2/ALAS2OPENSSL-SNAPSAFE-2026-011.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS2-2026-3365 vom 2026-06-22",
"url": "https://alas.aws.amazon.com/AL2/ALAS2-2026-3365.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:28010 vom 2026-06-22",
"url": "https://access.redhat.com/errata/RHSA-2026:28010"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS2-2026-3364 vom 2026-06-22",
"url": "https://alas.aws.amazon.com/AL2/ALAS2-2026-3364.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:2598-1 vom 2026-06-23",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026956.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:29197 vom 2026-06-24",
"url": "https://access.redhat.com/errata/RHSA-2026:29197"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:2614-1 vom 2026-06-24",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026982.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:2621-1 vom 2026-06-24",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026976.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2026-25239 vom 2026-06-27",
"url": "http://linux.oracle.com/errata/ELSA-2026-25239.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:2648-1 vom 2026-06-26",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/027012.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:2662-1 vom 2026-06-26",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/027022.html"
}
],
"source_lang": "en-US",
"title": "OpenSSL: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2026-06-29T22:00:00.000+00:00",
"generator": {
"date": "2026-06-30T07:00:56.356+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.6.0"
}
},
"id": "WID-SEC-W-2026-1852",
"initial_release_date": "2026-06-09T22:00:00.000+00:00",
"revision_history": [
{
"date": "2026-06-09T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2026-06-10T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Fedora aufgenommen"
},
{
"date": "2026-06-11T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2026-06-14T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Rocky Enterprise Software Foundation und Debian aufgenommen"
},
{
"date": "2026-06-15T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von SUSE und openSUSE aufgenommen"
},
{
"date": "2026-06-16T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von SUSE, Oracle Linux, Red Hat und Rocky Enterprise Software Foundation aufgenommen"
},
{
"date": "2026-06-17T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von SUSE und NetApp aufgenommen"
},
{
"date": "2026-06-18T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2026-06-22T22:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Amazon und Red Hat aufgenommen"
},
{
"date": "2026-06-23T22:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-06-24T22:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Red Hat und SUSE aufgenommen"
},
{
"date": "2026-06-28T22:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von Oracle Linux und SUSE aufgenommen"
},
{
"date": "2026-06-29T22:00:00.000+00:00",
"number": "13",
"summary": "ebenfalls gefixte Version 3.5.7 nachgetragen"
}
],
"status": "final",
"version": "13"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"category": "product_name",
"name": "Fedora Linux",
"product": {
"name": "Fedora Linux",
"product_id": "74185",
"product_identification_helper": {
"cpe": "cpe:/o:fedoraproject:fedora:-"
}
}
}
],
"category": "vendor",
"name": "Fedora"
},
{
"branches": [
{
"category": "product_name",
"name": "FreeBSD Project FreeBSD OS",
"product": {
"name": "FreeBSD Project FreeBSD OS",
"product_id": "4035",
"product_identification_helper": {
"cpe": "cpe:/o:freebsd:freebsd:-"
}
}
}
],
"category": "vendor",
"name": "FreeBSD Project"
},
{
"branches": [
{
"category": "product_name",
"name": "NetApp AFF",
"product": {
"name": "NetApp AFF",
"product_id": "T020536",
"product_identification_helper": {
"cpe": "cpe:/h:netapp:aff:-"
}
}
},
{
"category": "product_name",
"name": "NetApp FAS",
"product": {
"name": "NetApp FAS",
"product_id": "T011540",
"product_identification_helper": {
"cpe": "cpe:/h:netapp:fas:-"
}
}
}
],
"category": "vendor",
"name": "NetApp"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c4.0.1",
"product": {
"name": "Open Source OpenSSL \u003c4.0.1",
"product_id": "T055135"
}
},
{
"category": "product_version",
"name": "4.0.1",
"product": {
"name": "Open Source OpenSSL 4.0.1",
"product_id": "T055135-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:openssl:openssl:4.0.1"
}
}
},
{
"category": "product_version_range",
"name": "\u003c3.6.3",
"product": {
"name": "Open Source OpenSSL \u003c3.6.3",
"product_id": "T055136"
}
},
{
"category": "product_version",
"name": "3.6.3",
"product": {
"name": "Open Source OpenSSL 3.6.3",
"product_id": "T055136-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:openssl:openssl:3.6.3"
}
}
},
{
"category": "product_version_range",
"name": "\u003c3.5.7",
"product": {
"name": "Open Source OpenSSL \u003c3.5.7",
"product_id": "T055137"
}
},
{
"category": "product_version",
"name": "3.5.7",
"product": {
"name": "Open Source OpenSSL 3.5.7",
"product_id": "T055137-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:openssl:openssl:3.5.7"
}
}
},
{
"category": "product_version_range",
"name": "\u003c3.4.6",
"product": {
"name": "Open Source OpenSSL \u003c3.4.6",
"product_id": "T055138"
}
},
{
"category": "product_version",
"name": "3.4.6",
"product": {
"name": "Open Source OpenSSL 3.4.6",
"product_id": "T055138-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:openssl:openssl:3.4.6"
}
}
},
{
"category": "product_version_range",
"name": "\u003c3.0.21",
"product": {
"name": "Open Source OpenSSL \u003c3.0.21",
"product_id": "T055139"
}
},
{
"category": "product_version",
"name": "3.0.21",
"product": {
"name": "Open Source OpenSSL 3.0.21",
"product_id": "T055139-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:openssl:openssl:3.0.21"
}
}
},
{
"category": "product_version_range",
"name": "\u003c1.1.1zh",
"product": {
"name": "Open Source OpenSSL \u003c1.1.1zh",
"product_id": "T055140"
}
},
{
"category": "product_version",
"name": "1.1.1zh",
"product": {
"name": "Open Source OpenSSL 1.1.1zh",
"product_id": "T055140-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:openssl:openssl:1.1.1zh"
}
}
},
{
"category": "product_version_range",
"name": "\u003c1.0.2zq",
"product": {
"name": "Open Source OpenSSL \u003c1.0.2zq",
"product_id": "T055141"
}
},
{
"category": "product_version",
"name": "1.0.2zq",
"product": {
"name": "Open Source OpenSSL 1.0.2zq",
"product_id": "T055141-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:openssl:openssl:1.0.2zq"
}
}
}
],
"category": "product_name",
"name": "OpenSSL"
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "RESF Rocky Linux",
"product": {
"name": "RESF Rocky Linux",
"product_id": "T032255",
"product_identification_helper": {
"cpe": "cpe:/o:resf:rocky_linux:-"
}
}
}
],
"category": "vendor",
"name": "RESF"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
},
{
"category": "product_name",
"name": "SUSE openSUSE",
"product": {
"name": "SUSE openSUSE",
"product_id": "T027843",
"product_identification_helper": {
"cpe": "cpe:/o:suse:opensuse:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-34180",
"product_status": {
"known_affected": [
"T055135",
"67646",
"T055141",
"4035",
"T055140",
"T011540",
"T004914",
"T055139",
"T032255",
"T055138",
"74185",
"T055137",
"T055136",
"2951",
"T002207",
"T020536",
"T000126",
"T027843",
"398363"
]
},
"release_date": "2026-06-09T22:00:00.000+00:00",
"title": "CVE-2026-34180"
},
{
"cve": "CVE-2026-34181",
"product_status": {
"known_affected": [
"T055135",
"67646",
"T055141",
"4035",
"T055140",
"T011540",
"T004914",
"T055139",
"T032255",
"T055138",
"74185",
"T055137",
"T055136",
"2951",
"T002207",
"T020536",
"T000126",
"T027843",
"398363"
]
},
"release_date": "2026-06-09T22:00:00.000+00:00",
"title": "CVE-2026-34181"
},
{
"cve": "CVE-2026-34182",
"product_status": {
"known_affected": [
"T055135",
"67646",
"T055141",
"4035",
"T055140",
"T011540",
"T004914",
"T055139",
"T032255",
"T055138",
"74185",
"T055137",
"T055136",
"2951",
"T002207",
"T020536",
"T000126",
"T027843",
"398363"
]
},
"release_date": "2026-06-09T22:00:00.000+00:00",
"title": "CVE-2026-34182"
},
{
"cve": "CVE-2026-34183",
"product_status": {
"known_affected": [
"T055135",
"67646",
"T055141",
"4035",
"T055140",
"T011540",
"T004914",
"T055139",
"T032255",
"T055138",
"74185",
"T055137",
"T055136",
"2951",
"T002207",
"T020536",
"T000126",
"T027843",
"398363"
]
},
"release_date": "2026-06-09T22:00:00.000+00:00",
"title": "CVE-2026-34183"
},
{
"cve": "CVE-2026-35188",
"product_status": {
"known_affected": [
"T055135",
"67646",
"T055141",
"4035",
"T055140",
"T011540",
"T004914",
"T055139",
"T032255",
"T055138",
"74185",
"T055137",
"T055136",
"2951",
"T002207",
"T020536",
"T000126",
"T027843",
"398363"
]
},
"release_date": "2026-06-09T22:00:00.000+00:00",
"title": "CVE-2026-35188"
},
{
"cve": "CVE-2026-42764",
"product_status": {
"known_affected": [
"T055135",
"67646",
"T055141",
"4035",
"T055140",
"T011540",
"T004914",
"T055139",
"T032255",
"T055138",
"74185",
"T055137",
"T055136",
"2951",
"T002207",
"T020536",
"T000126",
"T027843",
"398363"
]
},
"release_date": "2026-06-09T22:00:00.000+00:00",
"title": "CVE-2026-42764"
},
{
"cve": "CVE-2026-42765",
"product_status": {
"known_affected": [
"T055135",
"67646",
"T055141",
"4035",
"T055140",
"T011540",
"T004914",
"T055139",
"T032255",
"T055138",
"74185",
"T055137",
"T055136",
"2951",
"T002207",
"T020536",
"T000126",
"T027843",
"398363"
]
},
"release_date": "2026-06-09T22:00:00.000+00:00",
"title": "CVE-2026-42765"
},
{
"cve": "CVE-2026-42766",
"product_status": {
"known_affected": [
"T055135",
"67646",
"T055141",
"4035",
"T055140",
"T011540",
"T004914",
"T055139",
"T032255",
"T055138",
"74185",
"T055137",
"T055136",
"2951",
"T002207",
"T020536",
"T000126",
"T027843",
"398363"
]
},
"release_date": "2026-06-09T22:00:00.000+00:00",
"title": "CVE-2026-42766"
},
{
"cve": "CVE-2026-42767",
"product_status": {
"known_affected": [
"T055135",
"67646",
"T055141",
"4035",
"T055140",
"T011540",
"T004914",
"T055139",
"T032255",
"T055138",
"74185",
"T055137",
"T055136",
"2951",
"T002207",
"T020536",
"T000126",
"T027843",
"398363"
]
},
"release_date": "2026-06-09T22:00:00.000+00:00",
"title": "CVE-2026-42767"
},
{
"cve": "CVE-2026-42768",
"product_status": {
"known_affected": [
"T055135",
"67646",
"T055141",
"4035",
"T055140",
"T011540",
"T004914",
"T055139",
"T032255",
"T055138",
"74185",
"T055137",
"T055136",
"2951",
"T002207",
"T020536",
"T000126",
"T027843",
"398363"
]
},
"release_date": "2026-06-09T22:00:00.000+00:00",
"title": "CVE-2026-42768"
},
{
"cve": "CVE-2026-42769",
"product_status": {
"known_affected": [
"T055135",
"67646",
"T055141",
"4035",
"T055140",
"T011540",
"T004914",
"T055139",
"T032255",
"T055138",
"74185",
"T055137",
"T055136",
"2951",
"T002207",
"T020536",
"T000126",
"T027843",
"398363"
]
},
"release_date": "2026-06-09T22:00:00.000+00:00",
"title": "CVE-2026-42769"
},
{
"cve": "CVE-2026-42770",
"product_status": {
"known_affected": [
"T055135",
"67646",
"T055141",
"4035",
"T055140",
"T011540",
"T004914",
"T055139",
"T032255",
"T055138",
"74185",
"T055137",
"T055136",
"2951",
"T002207",
"T020536",
"T000126",
"T027843",
"398363"
]
},
"release_date": "2026-06-09T22:00:00.000+00:00",
"title": "CVE-2026-42770"
},
{
"cve": "CVE-2026-42771",
"product_status": {
"known_affected": [
"T055135",
"67646",
"T055141",
"4035",
"T055140",
"T011540",
"T004914",
"T055139",
"T032255",
"T055138",
"74185",
"T055137",
"T055136",
"2951",
"T002207",
"T020536",
"T000126",
"T027843",
"398363"
]
},
"release_date": "2026-06-09T22:00:00.000+00:00",
"title": "CVE-2026-42771"
},
{
"cve": "CVE-2026-45445",
"product_status": {
"known_affected": [
"T055135",
"67646",
"T055141",
"4035",
"T055140",
"T011540",
"T004914",
"T055139",
"T032255",
"T055138",
"74185",
"T055137",
"T055136",
"2951",
"T002207",
"T020536",
"T000126",
"T027843",
"398363"
]
},
"release_date": "2026-06-09T22:00:00.000+00:00",
"title": "CVE-2026-45445"
},
{
"cve": "CVE-2026-45446",
"product_status": {
"known_affected": [
"T055135",
"67646",
"T055141",
"4035",
"T055140",
"T011540",
"T004914",
"T055139",
"T032255",
"T055138",
"74185",
"T055137",
"T055136",
"2951",
"T002207",
"T020536",
"T000126",
"T027843",
"398363"
]
},
"release_date": "2026-06-09T22:00:00.000+00:00",
"title": "CVE-2026-45446"
},
{
"cve": "CVE-2026-45447",
"product_status": {
"known_affected": [
"T055135",
"67646",
"T055141",
"4035",
"T055140",
"T011540",
"T004914",
"T055139",
"T032255",
"T055138",
"74185",
"T055137",
"T055136",
"2951",
"T002207",
"T020536",
"T000126",
"T027843",
"398363"
]
},
"release_date": "2026-06-09T22:00:00.000+00:00",
"title": "CVE-2026-45447"
},
{
"cve": "CVE-2026-7383",
"product_status": {
"known_affected": [
"T055135",
"67646",
"T055141",
"4035",
"T055140",
"T011540",
"T004914",
"T055139",
"T032255",
"T055138",
"74185",
"T055137",
"T055136",
"2951",
"T002207",
"T020536",
"T000126",
"T027843",
"398363"
]
},
"release_date": "2026-06-09T22:00:00.000+00:00",
"title": "CVE-2026-7383"
},
{
"cve": "CVE-2026-9076",
"product_status": {
"known_affected": [
"T055135",
"67646",
"T055141",
"4035",
"T055140",
"T011540",
"T004914",
"T055139",
"T032255",
"T055138",
"74185",
"T055137",
"T055136",
"2951",
"T002207",
"T020536",
"T000126",
"T027843",
"398363"
]
},
"release_date": "2026-06-09T22:00:00.000+00:00",
"title": "CVE-2026-9076"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…