Release date:
2026-02-26 10:45:43 UTC
Description:
- CVE-2025-69419: fix one-byte write-before-buffer triggered by malicious
PKCS#12 BMPString containing non-ASCII BMP code point; validate UTF8_putc
return and use correct destination capacity during conversion from UTF-16BE
into UTF-8
Updated packages:
-
openssl-1.1.1g-15.el8.4.tuxcare.els17.x86_64.rpm
sha:e68a8ad454c337f2b736ee5e512b39b619472b63eb5459183c22e8def5148d75
-
openssl-devel-1.1.1g-15.el8.4.tuxcare.els17.i686.rpm
sha:81e01ff15ed736b8075711df2a29a87bc0713d16dce6f39eb637001f8b49da87
-
openssl-devel-1.1.1g-15.el8.4.tuxcare.els17.x86_64.rpm
sha:73dcf19c550638723143432f7b376a34a29658c6b81a87568470ce7b6593cd9e
-
openssl-libs-1.1.1g-15.el8.4.tuxcare.els17.i686.rpm
sha:f229cabc301c26d662540c0955f0d35542798114122a85d0087d485a3cc69e79
-
openssl-libs-1.1.1g-15.el8.4.tuxcare.els17.x86_64.rpm
sha:304ca30c4251d44774577040052b6efed3bdc26b2469a29f613c262209250e1d
-
openssl-perl-1.1.1g-15.el8.4.tuxcare.els17.x86_64.rpm
sha:0c6ee70489c09d01ddbe05b2aace9620575ded279bd5ae2e0f6f919b5a8e27f2
-
openssl-static-1.1.1g-15.el8.4.tuxcare.els17.x86_64.rpm
sha:7e5b63e3b944db66920778803bf187702e9bcac4ef923d3a90b84f96cd6c7b5d
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
