Explore top 10 tips to secure your open-source projects now. Read More
×
This update for agama fixes the following issues
- CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length in rust-
openssl crate (bsc#1270602).
- CVE-2026-41678: openssl: incorrect bounds assertion in aes key wrap in rust-openssl crate (bsc#1270678).
- CVE-2026-41681: openssl: MdCtxRef::digest_final() writes past caller buffer with no length check in rust-openssl crate
(bsc#1270784).
- CVE-2026-41898: openssl: unchecked callback-returned length in PSK and cookie generate trampolines can leak adjacent
memory in rust-openssl crate (bsc#1270850).
- CVE-2026-42327: openssl: arbitrary code execution via specially crafted certificate in rust-openssl crate
(bsc#1270526).
- CVE-2026-44662: openssl: heap buffer overflow when encrypting with AES key-wrap-with-padding in rust-openssl crate
(bsc#1270891).
- CVE-2026-45784: openssl: out-of-bounds write in `CipherCtxRef::cipher_update_inplace` for AES-KW-PAD ciphers in rust-
openssl...
Read the Full Advisory- openSUSE Leap 16.0:
agama-17+647.daf9950fc-160000.12.1
agama-autoinstall-17+647.daf9950fc-160000.12.1
agama-cli-17+647.daf9950fc-160000.12.1
agama-cli-bash-completion-17+647.daf9950fc-160000.12.1
agama-cli-fish-completion-17+647.daf9950fc-160000.12.1
agama-cli-zsh-completion-17+647.daf9950fc-160000.12.1
agama-openapi-17+647.daf9950fc-160000.12.1
agama-scripts-17+647.daf9950fc-160000.12.1
* bsc#1270526
* bsc#1270602
* bsc#1270678
* bsc#1270784
* bsc#1270850
* bsc#1270891
* bsc#1270992
References:
* https://www.suse.com/security/cve/CVE-2026-41677.html
* https://www.suse.com/security/cve/CVE-2026-41678.html
* https://www.suse.com/security/cve/CVE-2026-41681.html
* https://www.suse.com/security/cve/CVE-2026-41898.html
* https://www.suse.com/security/cve/CVE-2026-42327.html
* https://www.suse.com/security/cve/CVE-2026-44662.html
* https://www.suse.com/security/cve/CVE-2026-45784.html
Get the latest Linux and open source security news straight to your inbox.