Mageia 9 OpenSSL Vital Buffer Overflow Resolution MGASA-2026-0101
mageia
April 10, 2026
MGASA-2026-0091 - Updated openssl packages fix security vulnerabilities
Summary
Description:
Incorrect Failure Handling in RSA KEM RSASVE Encapsulation.
(CVE-2026-31790)
Potential Use-after-free in DANE Client Code. (CVE-2026-28387)
NULL Pointer Dereference When Processing a Delta CRL. (CVE-2026-28388)
Possible NULL Dereference When Processing CMS KeyAgreeRecipientInfo.
(CVE-2026-28389)
Possible NULL Dereference When Processing CMS KeyTransportRecipientInfo.
(CVE-2026-28390)
Heap Buffer Overflow in Hexadecimal Conversion. (CVE-2026-31789)
References
- https://bugs.mageia.org/show_bug.cgi?id=35331
- https://www.openwall.com/lists/oss-security/2026/04/07/11
- https://www.cve.org/CVERecord?id=CVE-2026-31790
- https://www.cve.org/CVERecord?id=CVE-2026-28387
- https://www.cve.org/CVERecord?id=CVE-2026-28388
- https://www.cve.org/CVERecord?id=CVE-2026-28389
- https://www.cve.org/CVERecord?id=CVE-2026-28390
- https://www.cve.org/CVERecord?id=CVE-2026-31789
Topics Covered
Resolution
SRPMS
- 9/core/openssl-3.0.20-1.mga9
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Publication date: 10 Apr 2026
URL: https://advisories.mageia.org/MGASA-2026-0091.html
Type: security
CVE: CVE-2026-31790,
CVE-2026-28387,
CVE-2026-28388,
CVE-2026-28389,
CVE-2026-28390,
CVE-2026-31789
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!