Release Info

Advisory: CLSA-2026:1770668132

OS: AlmaLinux 9.2 ESU

Public date: 2026-02-09 20:15:34.818078

Project: openssl

Version: 3.0.7-20.el9_2.tuxcare.1.els8

Errata link: https://errata.tuxcare.com/els_os/almalinux9.2esu/CLSA-2026-1770668132.html

Changelog

- CVE-2025-69418: fix OCB AES-NI/HW stream path leaving trailing bytes unauthenticated/unencrypted by advancing pointers after stream processing - CVE-2025-69420: fix missing ASN1_TYPE validation in TS_RESP_verify_response for signing certificate attributes

Update

Update command: dnf update openssl*

Packages list

openssl-3.0.7-20.el9_2.tuxcare.1.els8.x86_64.rpm openssl-devel-3.0.7-20.el9_2.tuxcare.1.els8.i686.rpm openssl-devel-3.0.7-20.el9_2.tuxcare.1.els8.x86_64.rpm openssl-libs-3.0.7-20.el9_2.tuxcare.1.els8.i686.rpm openssl-libs-3.0.7-20.el9_2.tuxcare.1.els8.x86_64.rpm openssl-perl-3.0.7-20.el9_2.tuxcare.1.els8.x86_64.rpm

CVEs

CVE-2025-69418
CVE-2025-69420
CVE-2024-0727
CVE-2026-22795
CVE-2025-15467
CVE-2026-22796
CVE-2025-69421
CVE-2025-69419
CVE-2025-68160