Alerts This Week
Warning Icon 1 606
Alerts This Week
Warning Icon 1 606

Slackware Openssl Critical Heap Overflow Issues SSA-2026-168-05

slackware
Calendar Grey June 17, 2026
Dist Slackware Esm H88
New OpenSSL packages for Slackware 15.0 fixes critical issues like buffer over-read and heap overflow vulnerabilities.
New openssl packages are available for Slackware 15.0 and -current to fix security issues.

Summary

Here are the details from the Slackware 15.0 ChangeLog: patches/packages/openssl-1.1.1zh-i586-1_slack15.0.txz: Upgraded. Apply patch to fix the following security issues: Heap Buffer Over-read in ASN.1 Content Parsing. Possible NULL Dereference in Password-Based CMS Decryption. Heap Use-After-Free in the PKCS7_verify() Function. Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion. Out-of-Bounds Read in CMS Password-Based Decryption. These CVEs were fixed by the 1.1.1zh release that is only available to subscribers to OpenSSL's premium extended support. The patch was prepared by backporting from the OpenSSL-3.0 repo. Thanks to Ken Zalewski for the patch! For more information, see: https://openssl-library.org/news/vulnerabilities/#CVE-2026-34180 https://openssl-library.org/news/vulnerabilities/#CVE-2026-42766 https://openssl-library.org/news/vulnerabilities/#CVE-2026-45447

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory critical OpenSSL slackware heap overflow buffer over-read

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://slackware.com for additional mirror sites near you.
Updated packages for Slackware 15.0: ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/openssl-1.1.1zh-i586-1_slack15.0.txz ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/openssl-solibs-1.1.1zh-i586-1_slack15.0.txz
Updated packages for Slackware x86_64 15.0: ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/openssl-1.1.1zh-x86_64-1_slack15.0.txz ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/openssl-solibs-1.1.1zh-x86_64-1_slack15.0.txz
Updated packages for Slackware -current: ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/a/openssl-solibs-3.5.7-i686-1.txz ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/openssl-3.5.7-i686-1...

Read the Full Advisory

MD5 Signatures

Slackware 15.0 packages: 4bacef1ac6875a75b880462748dcb04d openssl-1.1.1zh-i586-1_slack15.0.txz 5886fb3b3800391012a8aff7fbdac2de openssl-solibs-1.1.1zh-i586-1_slack15.0.txz
Slackware x86_64 15.0 packages: 2a2109b035289903b46620b06ac4b5db openssl-1.1.1zh-x86_64-1_slack15.0.txz 47bca2f40e7efb3fec646a72990155e5 openssl-solibs-1.1.1zh-x86_64-1_slack15.0.txz
Slackware -current packages: e60936abed76795cbf66bf883e7fbc55 a/openssl-solibs-3.5.7-i686-1.txz 59d276ff0bc9816c1a92f804daf0debb n/openssl-3.5.7-i686-1.txz
Slackware x86_64 -current packages: b6ad454e84c6b96034cb79dbb8b166d6 a/openssl-solibs-3.5.7-x86_64-1.txz 3cd5ada338b376d73f9f379a4fcefbc4 n/openssl-3.5.7-x86_64-1.txz

Severity
critical
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory critical OpenSSL slackware heap overflow buffer over-read

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the packages as root: # upgradepkg openssl-1.1.1zh-i586-1_slack15.0.txz openssl-solibs-1.1.1zh-i586-1_slack15.0.txz

Your message here