{"affected":[{"ecosystem_specific":{"binaries":[{"openssl-3-livepatches":"0.3-160000.1.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 16.0","name":"openssl-3-livepatches","purl":"pkg:rpm/suse/openssl-3-livepatches&distro=SUSE%20Linux%20Enterprise%20Server%2016.0"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"0.3-160000.1.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"openssl-3-livepatches":"0.3-160000.1.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP applications 16.0","name":"openssl-3-livepatches","purl":"pkg:rpm/suse/openssl-3-livepatches&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"0.3-160000.1.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for openssl-3-livepatches fixes the following issues:\n\n- CVE-2025-11187: Fixed improper validation of PBMAC1 parameters in PKCS#12 MAC verification  (bsc#1256878).\n- CVE-2025-15467: Fixed stack buffer overflow in CMS AuthEnvelopedData parsing (bsc#1256876).\n- CVE-2025-15468: Fixed NULL dereference in SSL_CIPHER_find() function on unknown cipher ID (bsc#1256880).\n- CVE-2025-9230: Fixed out-of-bounds read & write in RFC 3211 KEK Unwrap (bsc#1250410).\n","id":"SUSE-SU-2026:20607-1","modified":"2026-02-18T16:23:27Z","published":"2026-02-18T16:23:27Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2026/suse-su-202620607-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1250410"},{"type":"REPORT","url":"https://bugzilla.suse.com/1256876"},{"type":"REPORT","url":"https://bugzilla.suse.com/1256878"},{"type":"REPORT","url":"https://bugzilla.suse.com/1256880"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-11187"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-15467"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-15468"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-9230"}],"related":["CVE-2025-11187","CVE-2025-15467","CVE-2025-15468","CVE-2025-9230"],"summary":"Security update for openssl-3-livepatches","upstream":["CVE-2025-11187","CVE-2025-15467","CVE-2025-15468","CVE-2025-9230"]}