[CLSA-2026:1781258528] Fix of 5 CVEs

Type:

security

Severity:

Critical

Release date:

2026-06-12 10:02:38 UTC

Description:

   * SECURITY UPDATE: Heap buffer overflow in ASN1_mbstring_ncopy() where
     the destination length for BMPSTRING and UNIVERSALSTRING output is
     computed by a signed left shift that can overflow int, producing an
     undersized allocation followed by out-of-bounds writes for oversized
     attacker-controlled inputs reaching ASN1_mbstring_copy() or
     ASN1_mbstring_ncopy() directly.
     - debian/patches/CVE-2026-7383.patch: reject oversized inputs before
       the shifts and in out_utf8() in crypto/asn1/a_mbstr.c.
     - CVE-2026-7383
   * SECURITY UPDATE: Out-of-bounds read in kek_unwrap_key() check-byte
     validation when a CMS PasswordRecipientInfo uses a KEK cipher with a
     block size smaller than 4 octets, making the decrypted buffer smaller
     than the seven octets the check-byte test reads.
     - debian/patches/CVE-2026-9076.patch: reject blocklen < 4 and
       oversized inlen in kek_unwrap_key() in crypto/cms/cms_pwri.c.
     - CVE-2026-9076
   * SECURITY UPDATE: Heap buffer over-read in ASN.1 content parsing: the
     long content length is truncated to int when asn1_d2i_ex_primitive()
     calls asn1_ex_c2i(), so ASN1_STRING_set() could be called with an
     inconsistent length.
     - debian/patches/CVE-2026-34180.patch: reject content lengths not
       representable as int before calling asn1_ex_c2i() in
       crypto/asn1/tasn_dec.c (signature kept, asn1_ex_c2i() is public
       API in 1.0.2).
     - CVE-2026-34180
   * SECURITY UPDATE: NULL pointer dereference when processing CMS
     PasswordRecipientInfo with the optional keyDerivationAlgorithm field
     absent, allowing a denial of service via crafted CMS messages.
     - debian/patches/CVE-2026-42766.patch: fail cleanly when
       keyDerivationAlgorithm is missing in crypto/cms/cms_pwri.c.
     - CVE-2026-42766
   * SECURITY UPDATE: Use-after-free in PKCS7_verify() where the cleanup
     path can free the caller-owned indata BIO via BIO_free_all() when
     verifying a crafted PKCS#7 structure with an empty digestAlgorithms
     SET, leading to crashes, heap corruption or potentially remote code
     execution.
     - debian/patches/CVE-2026-45447.patch: free the BIO chain explicitly,
       stopping at the caller-owned indata, in crypto/pkcs7/pk7_smime.c.
     - CVE-2026-45447

CVEs fixed:

Updated packages:

libssl-dev_1.0.2g-1ubuntu4.21+tuxcare.els16_amd64.deb
sha:44054bddf05b34b14d8ea5c51ec842a143f4d6f5
libssl-doc_1.0.2g-1ubuntu4.21+tuxcare.els16_all.deb
sha:0bffaaa6a53eb4da5f075c9db729a12e26c24bdc
libssl1.0.0_1.0.2g-1ubuntu4.21+tuxcare.els16_amd64.deb
sha:f19fcd3f55646ad4f09c094abeee2f6c7495124c
openssl_1.0.2g-1ubuntu4.21+tuxcare.els16_amd64.deb
sha:bacb7cd8633a16c7c21692b2da7509fcec534c30

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.