TWSD-1345 HSOL-4291 / AG OpenSSL Vulnerability CVE-2025-9230
Review Request #1214 — Created Dec. 8, 2025 and submitted — Latest diff uploaded
| Information | |
|---|---|
| peteryeh | |
| AG | |
| rel_ag_9_4_5 | |
| TWSD-1345 | |
| Reviewers | |
| evalin, jasonchou, milliechou | |
CVE-2025-9230: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. This out-of-bounds read may trigger a crash which leads to Denial of Service for an application
Intergrated from OpenSSL 1.1.1 to OpenSSL 3.2