Re: [OE-core] [scarthgap][PATCH] openssl: fix CVE-2025-15468

Yoann Congal via lists.openembedded.org Wed, 04 Feb 2026 09:07:57 -0800

On Mon Feb 2, 2026 at 5:34 AM CET, Hitendra Prajapati via 
lists.openembedded.org wrote:
> Upstream-Status: Backport from 
> https://github.com/openssl/openssl/commit/1f08e54bad32843044fe8a675948d65e3b4ece65
>
> Signed-off-by: Hitendra Prajapati <[email protected]>
> ---
>  .../openssl/openssl/CVE-2025-15468.patch      | 39 +++++++++++++++++++
>  .../openssl/openssl_3.2.6.bb                  |  1 +
>  2 files changed, 40 insertions(+)
>  create mode 100644 
> meta/recipes-connectivity/openssl/openssl/CVE-2025-15468.patch


Hello,

Thanks for the patch.

(Same as CVE-2025-15467)
As far as I can tell, CVE-2025-69419 does also impact whinlatter. Can you
send a fix there (either by then backport or maybe an upgrade?)

Thanks!
-- 
Yoann Congal
Smile ECS

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#230554): 
https://lists.openembedded.org/g/openembedded-core/message/230554
Mute This Topic: https://lists.openembedded.org/mt/117591792/21656
Group Owner: [email protected]
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[[email protected]]
-=-=-=-=-=-=-=-=-=-=-=-

Re: [OE-core] [scarthgap][PATCH] openssl: fix CVE-2025-15468

Reply via email to