Skip to content

[Deepin Integration]~[v25-Release] fix(openssl): Security fixes for CVE-2026-45446, CVE-2026-42766, CVE-2026-42767, CVE-2026-42770 by deepin-ci-robot@deepin-community/openssl by deepin-community-ci-bot[bot] #13464

Open
Open
[Deepin Integration]~[v25-Release] fix(openssl): Security fixes for CVE-2026-45446, CVE-2026-42766, CVE-2026-42767, CVE-2026-42770 by deepin-ci-robot@deepin-community/openssl by deepin-community-ci-bot[bot]#13464
Assignees
Zeno-sole
Labels
Project:integrated集成管理相关security
Milestone
v25-Release

Description

@deepin-bot
deepin-bot
bot
opened on Jun 22, 2026

Package information | 软件包信息

包名 版本
openssl 3.2.4-0deepin9

Package repository address | 软件包仓库地址

deb [trusted=yes] https://ci.deepin.com/repo/obs/deepin:/CI:/TestingIntegration:/test-integration-pr-4167/testing/ ./

Changelog | 更新信息

openssl (3.2.4-0deepin9) unstable; urgency=medium

  • Security update: Fix 4 CVEs
    • Incorrect tag processing for empty messages in AES-GCM-SIV and AES-SIV modes
      Fixes: CVE-2026-45446
    • NULL dereference in password-based CMS decryption
      Fixes: CVE-2026-42766
    • NULL pointer dereference in CRMF EncryptedValue decryption
      Fixes: CVE-2026-42767
    • Use local q parameter for DHX subgroup membership check
      Fixes: CVE-2026-42770

Metadata

Metadata

Assignees

Labels

Project:integrated集成管理相关security

Type

No type

Fields

No fields configured for issues without a type.

Projects

集成管理
Status
已集成

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions