Release date:
2026-02-11 10:12:20 UTC
Description:
* SECURITY UPDATE: A NULL pointer dereference can trigger a crash which
leads to Denial of Service for an application processing PKCS#12 files
- debian/patches/CVE-2025-69421.patch: fix NULL pointer dereference
in PKCS12_item_decrypt_d2i by adding NULL check for oct parameter
- CVE-2025-69421
Updated packages:
-
libssl-dev_1.1.1f-1ubuntu2.24+tuxcare.els2_amd64.deb
sha:e762b8f3bc3770e690fe8492b94d2a85ba69783c
-
libssl-doc_1.1.1f-1ubuntu2.24+tuxcare.els2_all.deb
sha:4cb4b2be4616853024c023f6baf658d7e61cfd29
-
libssl1.1_1.1.1f-1ubuntu2.24+tuxcare.els2_amd64.deb
sha:4fe83ecdac08d2a1d38f08f3dabdb1befdc14148
-
openssl_1.1.1f-1ubuntu2.24+tuxcare.els2_amd64.deb
sha:b17cdf093850b12977456ab4fef2013af27fb931
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
