FreeBSD -- Multiple vulnerabilities in OpenSSL

Problem Description:

Multiple issues have been reported as part of this advisory with different issues affecting different OpenSSL versions and therefore different FreeBSD versions. Instead of exhaustively listing detailed writeups for each issue, please see the referenced advisory from OpenSSL.

Issues affecting FreeBSD 15.x (OpenSSL 3.5):

• CVE-2026-7383: Possible heap buffer overflow in ASN.1 string conversion
• CVE-2026-9076: Out-of-bounds read in CMS password-based decryption
• CVE-2026-34180: Heap buffer over-read in ASN.1 content parsing
• CVE-2026-34181: PKCS#12 files with PBMAC1 accepted with short HMAC keys
• CVE-2026-34182: CMS AuthEnvelopedData may accept forged messages
• CVE-2026-34183: Unbounded memory growth in the QUIC PATH_CHALLENGE handler
• CVE-2026-42764: NULL dereference in QUIC server initial packet handling
• CVE-2026-42766: Possible NULL dereference in password-based CMS decryption
• CVE-2026-42767: NULL dereference in CRMF EncryptedValue decryption
• CVE-2026-42768: Bleichenbacher oracle in CMS_decrypt() and PKCS7_decrypt()
• CVE-2026-42769: Trust-anchor substitution in CMP rootCaKeyUpdate handling
• CVE-2026-42770: FFC-DH peer validation uses attacker-supplied q
• CVE-2026-45445: AES-OCB IV ignored on the EVP_Cipher() one-shot path
• CVE-2026-45446: Empty-message tag bypass in AES-GCM-SIV and AES-SIV modes
• CVE-2026-45447: Heap use-after-free in PKCS7_verify()

Issues affecting FreeBSD 14.x (OpenSSL 3.0):

• CVE-2026-7383: Possible heap buffer overflow in ASN.1 string conversion
• CVE-2026-9076: Out-of-bounds read in CMS password-based decryption
• CVE-2026-34180: Heap buffer over-read in ASN.1 content parsing
• CVE-2026-34182: CMS AuthEnvelopedData may accept forged messages
• CVE-2026-42766: Possible NULL dereference in password-based CMS decryption
• CVE-2026-42770: FFC-DH peer validation uses attacker-supplied q
• CVE-2026-45445: AES-OCB IV ignored on the EVP_Cipher() one-shot path
• CVE-2026-45446: Empty-message tag bypass in AES-GCM-SIV and AES-SIV modes
• CVE-2026-45447: Heap use-after-free in PKCS7_verify()

Impact:

The issues include heap buffer overflows and over-reads, NULL pointer dereferences, a use-after-free, unbounded memory allocation, and several cryptographic flaws permitting message forgery, integrity bypass, or recovery of a private key.

Security impact ranges from a Denial of Service to a potential remote code execution. See the OpenSSL advisory for specific details.