SUSE-SU-2026:22449-1

Vulnerability from csaf_suse - Published: 2026-06-30 08:41 - Updated: 2026-06-30 08:41
Summary
Security update for openssl-3
Severity
Moderate
Notes
Title of the patch: Security update for openssl-3
Description of the patch: This update for openssl-3 fixes the following issue - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350).
Patchnames: SUSE-SLE-Micro-6.1-599
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.1:libopenssl-3-devel-3.1.4-slfo.1.1_11.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenssl-3-devel-3.1.4-slfo.1.1_11.1.ppc64le
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenssl-3-devel-3.1.4-slfo.1.1_11.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenssl-3-devel-3.1.4-slfo.1.1_11.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.ppc64le
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenssl3-3.1.4-slfo.1.1_11.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenssl3-3.1.4-slfo.1.1_11.1.ppc64le
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenssl3-3.1.4-slfo.1.1_11.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:libopenssl3-3.1.4-slfo.1.1_11.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:openssl-3-3.1.4-slfo.1.1_11.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:openssl-3-3.1.4-slfo.1.1_11.1.ppc64le
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:openssl-3-3.1.4-slfo.1.1_11.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.1:openssl-3-3.1.4-slfo.1.1_11.1.x86_64
Vendor Fix
Threats
Impact moderate

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for openssl-3",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for openssl-3 fixes the following issue\n\n- CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-Micro-6.1-599",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_22449-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2026:22449-1",
        "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622449-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2026:22449-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-July/027259.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1266350",
        "url": "https://bugzilla.suse.com/1266350"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-42767 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-42767/"
      }
    ],
    "title": "Security update for openssl-3",
    "tracking": {
      "current_release_date": "2026-06-30T08:41:43Z",
      "generator": {
        "date": "2026-06-30T08:41:43Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2026:22449-1",
      "initial_release_date": "2026-06-30T08:41:43Z",
      "revision_history": [
        {
          "date": "2026-06-30T08:41:43Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libopenssl-3-devel-3.1.4-slfo.1.1_11.1.aarch64",
                "product": {
                  "name": "libopenssl-3-devel-3.1.4-slfo.1.1_11.1.aarch64",
                  "product_id": "libopenssl-3-devel-3.1.4-slfo.1.1_11.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.aarch64",
                "product": {
                  "name": "libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.aarch64",
                  "product_id": "libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libopenssl3-3.1.4-slfo.1.1_11.1.aarch64",
                "product": {
                  "name": "libopenssl3-3.1.4-slfo.1.1_11.1.aarch64",
                  "product_id": "libopenssl3-3.1.4-slfo.1.1_11.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "openssl-3-3.1.4-slfo.1.1_11.1.aarch64",
                "product": {
                  "name": "openssl-3-3.1.4-slfo.1.1_11.1.aarch64",
                  "product_id": "openssl-3-3.1.4-slfo.1.1_11.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libopenssl-3-devel-3.1.4-slfo.1.1_11.1.ppc64le",
                "product": {
                  "name": "libopenssl-3-devel-3.1.4-slfo.1.1_11.1.ppc64le",
                  "product_id": "libopenssl-3-devel-3.1.4-slfo.1.1_11.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.ppc64le",
                "product": {
                  "name": "libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.ppc64le",
                  "product_id": "libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libopenssl3-3.1.4-slfo.1.1_11.1.ppc64le",
                "product": {
                  "name": "libopenssl3-3.1.4-slfo.1.1_11.1.ppc64le",
                  "product_id": "libopenssl3-3.1.4-slfo.1.1_11.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "openssl-3-3.1.4-slfo.1.1_11.1.ppc64le",
                "product": {
                  "name": "openssl-3-3.1.4-slfo.1.1_11.1.ppc64le",
                  "product_id": "openssl-3-3.1.4-slfo.1.1_11.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libopenssl-3-devel-3.1.4-slfo.1.1_11.1.s390x",
                "product": {
                  "name": "libopenssl-3-devel-3.1.4-slfo.1.1_11.1.s390x",
                  "product_id": "libopenssl-3-devel-3.1.4-slfo.1.1_11.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.s390x",
                "product": {
                  "name": "libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.s390x",
                  "product_id": "libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libopenssl3-3.1.4-slfo.1.1_11.1.s390x",
                "product": {
                  "name": "libopenssl3-3.1.4-slfo.1.1_11.1.s390x",
                  "product_id": "libopenssl3-3.1.4-slfo.1.1_11.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "openssl-3-3.1.4-slfo.1.1_11.1.s390x",
                "product": {
                  "name": "openssl-3-3.1.4-slfo.1.1_11.1.s390x",
                  "product_id": "openssl-3-3.1.4-slfo.1.1_11.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libopenssl-3-devel-3.1.4-slfo.1.1_11.1.x86_64",
                "product": {
                  "name": "libopenssl-3-devel-3.1.4-slfo.1.1_11.1.x86_64",
                  "product_id": "libopenssl-3-devel-3.1.4-slfo.1.1_11.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.x86_64",
                "product": {
                  "name": "libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.x86_64",
                  "product_id": "libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libopenssl3-3.1.4-slfo.1.1_11.1.x86_64",
                "product": {
                  "name": "libopenssl3-3.1.4-slfo.1.1_11.1.x86_64",
                  "product_id": "libopenssl3-3.1.4-slfo.1.1_11.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "openssl-3-3.1.4-slfo.1.1_11.1.x86_64",
                "product": {
                  "name": "openssl-3-3.1.4-slfo.1.1_11.1.x86_64",
                  "product_id": "openssl-3-3.1.4-slfo.1.1_11.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Micro 6.1",
                "product": {
                  "name": "SUSE Linux Micro 6.1",
                  "product_id": "SUSE Linux Micro 6.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sl-micro:6.1"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libopenssl-3-devel-3.1.4-slfo.1.1_11.1.aarch64 as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:libopenssl-3-devel-3.1.4-slfo.1.1_11.1.aarch64"
        },
        "product_reference": "libopenssl-3-devel-3.1.4-slfo.1.1_11.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libopenssl-3-devel-3.1.4-slfo.1.1_11.1.ppc64le as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:libopenssl-3-devel-3.1.4-slfo.1.1_11.1.ppc64le"
        },
        "product_reference": "libopenssl-3-devel-3.1.4-slfo.1.1_11.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libopenssl-3-devel-3.1.4-slfo.1.1_11.1.s390x as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:libopenssl-3-devel-3.1.4-slfo.1.1_11.1.s390x"
        },
        "product_reference": "libopenssl-3-devel-3.1.4-slfo.1.1_11.1.s390x",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libopenssl-3-devel-3.1.4-slfo.1.1_11.1.x86_64 as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:libopenssl-3-devel-3.1.4-slfo.1.1_11.1.x86_64"
        },
        "product_reference": "libopenssl-3-devel-3.1.4-slfo.1.1_11.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.aarch64 as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.aarch64"
        },
        "product_reference": "libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.ppc64le as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.ppc64le"
        },
        "product_reference": "libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.s390x as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.s390x"
        },
        "product_reference": "libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.s390x",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.x86_64 as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.x86_64"
        },
        "product_reference": "libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libopenssl3-3.1.4-slfo.1.1_11.1.aarch64 as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:libopenssl3-3.1.4-slfo.1.1_11.1.aarch64"
        },
        "product_reference": "libopenssl3-3.1.4-slfo.1.1_11.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libopenssl3-3.1.4-slfo.1.1_11.1.ppc64le as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:libopenssl3-3.1.4-slfo.1.1_11.1.ppc64le"
        },
        "product_reference": "libopenssl3-3.1.4-slfo.1.1_11.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libopenssl3-3.1.4-slfo.1.1_11.1.s390x as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:libopenssl3-3.1.4-slfo.1.1_11.1.s390x"
        },
        "product_reference": "libopenssl3-3.1.4-slfo.1.1_11.1.s390x",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libopenssl3-3.1.4-slfo.1.1_11.1.x86_64 as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:libopenssl3-3.1.4-slfo.1.1_11.1.x86_64"
        },
        "product_reference": "libopenssl3-3.1.4-slfo.1.1_11.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-3-3.1.4-slfo.1.1_11.1.aarch64 as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:openssl-3-3.1.4-slfo.1.1_11.1.aarch64"
        },
        "product_reference": "openssl-3-3.1.4-slfo.1.1_11.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-3-3.1.4-slfo.1.1_11.1.ppc64le as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:openssl-3-3.1.4-slfo.1.1_11.1.ppc64le"
        },
        "product_reference": "openssl-3-3.1.4-slfo.1.1_11.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-3-3.1.4-slfo.1.1_11.1.s390x as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:openssl-3-3.1.4-slfo.1.1_11.1.s390x"
        },
        "product_reference": "openssl-3-3.1.4-slfo.1.1_11.1.s390x",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openssl-3-3.1.4-slfo.1.1_11.1.x86_64 as component of SUSE Linux Micro 6.1",
          "product_id": "SUSE Linux Micro 6.1:openssl-3-3.1.4-slfo.1.1_11.1.x86_64"
        },
        "product_reference": "openssl-3-3.1.4-slfo.1.1_11.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Micro 6.1"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-42767",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-42767"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Issue summary: An attacker-controlled CMP (Certificate Management Protocol)\nserver could trigger a NULL pointer dereference in a CMP client application.\n\nImpact summary: A NULL pointer dereference causes a crash of the\napplication and a Denial of Service.\n\nAn attacker controlling a CMP server (or acting as a man-in-the-middle) could\ncraft a CMP response containing a CRMF (Certificate Request Message Format)\nCertRepMessage with an EncryptedValue structure where the symmAlg field\nhas an algorithm OID but no parameters field. When the OpenSSL CMP client\nprocesses this response, the NULL dereference occurs, causing a crash of\nthe CMP client.\n\nApplications that process untrusted CMP/CRMF messages may be affected.\n\nThe FIPS modules in 4.0, 3.6, 3.5, 3.4, and 3.0 are not affected by this\nissue, as the affected code is outside the OpenSSL FIPS module boundary.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.1:libopenssl-3-devel-3.1.4-slfo.1.1_11.1.aarch64",
          "SUSE Linux Micro 6.1:libopenssl-3-devel-3.1.4-slfo.1.1_11.1.ppc64le",
          "SUSE Linux Micro 6.1:libopenssl-3-devel-3.1.4-slfo.1.1_11.1.s390x",
          "SUSE Linux Micro 6.1:libopenssl-3-devel-3.1.4-slfo.1.1_11.1.x86_64",
          "SUSE Linux Micro 6.1:libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.aarch64",
          "SUSE Linux Micro 6.1:libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.ppc64le",
          "SUSE Linux Micro 6.1:libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.s390x",
          "SUSE Linux Micro 6.1:libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.x86_64",
          "SUSE Linux Micro 6.1:libopenssl3-3.1.4-slfo.1.1_11.1.aarch64",
          "SUSE Linux Micro 6.1:libopenssl3-3.1.4-slfo.1.1_11.1.ppc64le",
          "SUSE Linux Micro 6.1:libopenssl3-3.1.4-slfo.1.1_11.1.s390x",
          "SUSE Linux Micro 6.1:libopenssl3-3.1.4-slfo.1.1_11.1.x86_64",
          "SUSE Linux Micro 6.1:openssl-3-3.1.4-slfo.1.1_11.1.aarch64",
          "SUSE Linux Micro 6.1:openssl-3-3.1.4-slfo.1.1_11.1.ppc64le",
          "SUSE Linux Micro 6.1:openssl-3-3.1.4-slfo.1.1_11.1.s390x",
          "SUSE Linux Micro 6.1:openssl-3-3.1.4-slfo.1.1_11.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-42767",
          "url": "https://www.suse.com/security/cve/CVE-2026-42767"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1266350 for CVE-2026-42767",
          "url": "https://bugzilla.suse.com/1266350"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.1:libopenssl-3-devel-3.1.4-slfo.1.1_11.1.aarch64",
            "SUSE Linux Micro 6.1:libopenssl-3-devel-3.1.4-slfo.1.1_11.1.ppc64le",
            "SUSE Linux Micro 6.1:libopenssl-3-devel-3.1.4-slfo.1.1_11.1.s390x",
            "SUSE Linux Micro 6.1:libopenssl-3-devel-3.1.4-slfo.1.1_11.1.x86_64",
            "SUSE Linux Micro 6.1:libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.aarch64",
            "SUSE Linux Micro 6.1:libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.ppc64le",
            "SUSE Linux Micro 6.1:libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.s390x",
            "SUSE Linux Micro 6.1:libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.x86_64",
            "SUSE Linux Micro 6.1:libopenssl3-3.1.4-slfo.1.1_11.1.aarch64",
            "SUSE Linux Micro 6.1:libopenssl3-3.1.4-slfo.1.1_11.1.ppc64le",
            "SUSE Linux Micro 6.1:libopenssl3-3.1.4-slfo.1.1_11.1.s390x",
            "SUSE Linux Micro 6.1:libopenssl3-3.1.4-slfo.1.1_11.1.x86_64",
            "SUSE Linux Micro 6.1:openssl-3-3.1.4-slfo.1.1_11.1.aarch64",
            "SUSE Linux Micro 6.1:openssl-3-3.1.4-slfo.1.1_11.1.ppc64le",
            "SUSE Linux Micro 6.1:openssl-3-3.1.4-slfo.1.1_11.1.s390x",
            "SUSE Linux Micro 6.1:openssl-3-3.1.4-slfo.1.1_11.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.1:libopenssl-3-devel-3.1.4-slfo.1.1_11.1.aarch64",
            "SUSE Linux Micro 6.1:libopenssl-3-devel-3.1.4-slfo.1.1_11.1.ppc64le",
            "SUSE Linux Micro 6.1:libopenssl-3-devel-3.1.4-slfo.1.1_11.1.s390x",
            "SUSE Linux Micro 6.1:libopenssl-3-devel-3.1.4-slfo.1.1_11.1.x86_64",
            "SUSE Linux Micro 6.1:libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.aarch64",
            "SUSE Linux Micro 6.1:libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.ppc64le",
            "SUSE Linux Micro 6.1:libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.s390x",
            "SUSE Linux Micro 6.1:libopenssl-3-fips-provider-3.1.4-slfo.1.1_11.1.x86_64",
            "SUSE Linux Micro 6.1:libopenssl3-3.1.4-slfo.1.1_11.1.aarch64",
            "SUSE Linux Micro 6.1:libopenssl3-3.1.4-slfo.1.1_11.1.ppc64le",
            "SUSE Linux Micro 6.1:libopenssl3-3.1.4-slfo.1.1_11.1.s390x",
            "SUSE Linux Micro 6.1:libopenssl3-3.1.4-slfo.1.1_11.1.x86_64",
            "SUSE Linux Micro 6.1:openssl-3-3.1.4-slfo.1.1_11.1.aarch64",
            "SUSE Linux Micro 6.1:openssl-3-3.1.4-slfo.1.1_11.1.ppc64le",
            "SUSE Linux Micro 6.1:openssl-3-3.1.4-slfo.1.1_11.1.s390x",
            "SUSE Linux Micro 6.1:openssl-3-3.1.4-slfo.1.1_11.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T08:41:43Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-42767"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Loading…

Detection rules are retrieved from Rulezet.

Loading…

Loading…