[Deepin Integration]~[v25-Release] Security update: 13 CVEs by UTsweetyfish@deepin-community/openssl by deepin-community-ci-bot[bot]

### Package information | 软件包信息

包名 | 版本
--  | --
openssl | [3.2.4-0deepin6](https://github.com/deepin-community/openssl/commit/a6921593a6deec65360d2f13004d59bbbe5ded40)

### Package repository address | 软件包仓库地址

    deb [trusted=yes] https://ci.deepin.com/repo/obs/deepin:/CI:/TestingIntegration:/test-integration-pr-3656/testing/ ./

### Changelog | 更新信息

#### openssl (3.2.4-0deepin6) unstable; urgency=medium

  * Security update: 13 CVEs
    See: https://github.com/deepin-community/sig-deepin-security/issues/235
    See: https://github.com/deepin-community/sig-deepin-security/issues/232
    - CVE-2025-9230:
      https://github.com/openssl/openssl/commit/b5282d677551afda7d20e9c00e09561b547b2dfd
    - CVE-2025-9231:
      https://github.com/openssl/openssl/commit/cba616c26ac8e7b37de5e77762e505ba5ca51698
    - CVE-2025-9232:
      https://github.com/openssl/openssl/commit/89e790ac431125a4849992858490bed6b225eadf
    - CVE-2025-15467:
      0ddd6b6 Correct handling of AEAD-encrypted CMS with inadmissibly long IV
      b1a995e Some comments to clarify functions usage
      6297ac4 Test for handling of AEAD-encrypted CMS with inadmissibly long IV
    - CVE-2025-15468:
      293b55d ossl_quic_get_cipher_by_char(): Add a NULL guard before dereferencing SSL_CIPHER
    - CVE-2025-66199:
      84f73f7 Check the received uncompressed certificate length to prevent excessive pre-decompression allocation.
    - CVE-2025-68160:
      b21663c Fix heap buffer overflow in BIO_f_linebuffer
    - CVE-2025-69418:
      be9375d Fix OCB AES-NI/HW stream path unauthenticated/unencrypted trailing bytes
    - CVE-2025-69419:
      53b78f2 Check return code of UTF8_putc
    - CVE-2025-69420:
      ea8fc4c Verify ASN1 object's types before attempting to access them as a particular type
    - CVE-2025-69421:
      2c13bf1 PKCS12_item_decrypt_d2i_ex(): Check oct argument for NULL
    - CVE-2026-22795, CVE-2026-22796
      c082649 Ensure ASN1 types are checked before use.




Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Deepin Integration]~[v25-Release] Security update: 13 CVEs by UTsweetyfish@deepin-community/openssl by deepin-community-ci-bot[bot] #12746

Package information | 软件包信息

Package repository address | 软件包仓库地址

Changelog | 更新信息

openssl (3.2.4-0deepin6) unstable; urgency=medium

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[Deepin Integration]~[v25-Release] Security update: 13 CVEs by UTsweetyfish@deepin-community/openssl by deepin-community-ci-bot[bot] #12746

Description

Package information | 软件包信息

Package repository address | 软件包仓库地址

Changelog | 更新信息

openssl (3.2.4-0deepin6) unstable; urgency=medium

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions