[CLSA-2026:1770717529] Fix CVE(s): CVE-2025-69421

Type:

security

Severity:

Important

Release date:

2026-02-10 09:58:53 UTC

Description:

   * SECURITY UPDATE: check oct argument for NULL in PKCS12_item_decrypt_d2i_e()
     - debian/patches/CVE-2025-69421.patch: fix a NULL pointer dereference
       in the PKCS12_item_decrypt_d2i_ex() function.
     - CVE-2025-69421

Updated packages:

libssl-dev_1.1.1n-0+deb10u6+tuxcare.els1_amd64.deb
sha:1c5e572a0891b467b09686654306e94057115fc1
libssl-doc_1.1.1n-0+deb10u6+tuxcare.els1_all.deb
sha:c60f726831020fc51c91a8abff9deaa17ef89980
libssl1.1_1.1.1n-0+deb10u6+tuxcare.els1_amd64.deb
sha:37f176170462b471d7eceb4dc5c2ced6efe4283e
openssl_1.1.1n-0+deb10u6+tuxcare.els1_amd64.deb
sha:3235b017eea076f98c451692dac60874c96b2a80

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.