Skip to content

Update dependency openssl/openssl to v3.6.2#129

Merged
renovate[bot] merged 1 commit into
masterfrom
renovate/openssl-openssl-3.x
Apr 7, 2026
Merged

Update dependency openssl/openssl to v3.6.2#129
renovate[bot] merged 1 commit into
masterfrom
renovate/openssl-openssl-3.x

Conversation

@renovate

@renovate renovate Bot commented Apr 7, 2026

Copy link
Copy Markdown
Contributor

This PR contains the following updates:

Package Update Change
openssl/openssl patch 3.6.13.6.2

Release Notes

openssl/openssl (openssl/openssl)

v3.6.2: OpenSSL 3.6.2

Compare Source

OpenSSL 3.6.2 is a security patch release. The most severe CVE fixed in this
release is Moderate.

This release incorporates the following bug fixes and mitigations:

  • Fixed incorrect failure handling in RSA KEM RSASVE encapsulation.
    (CVE-2026-31790)

  • Fixed loss of key agreement group tuple structure when the DEFAULT keyword
    is used in the server-side configuration of the key-agreement group list.
    (CVE-2026-2673)

  • Fixed out-of-bounds read in AES-CFB-128 on x86-64 CPUs with AVX-512 support.
    (CVE-2026-28386)

  • Fixed potential use-after-free in DANE client code.
    (CVE-2026-28387)

  • Fixed NULL pointer dereference when processing a delta CRL.
    (CVE-2026-28388)

  • Fixed possible NULL dereference when processing CMS KeyAgreeRecipientInfo.
    (CVE-2026-28389)

  • Fixed possible NULL dereference when processing CMS
    KeyTransportRecipientInfo.
    (CVE-2026-28390)

  • Fixed heap buffer overflow in hexadecimal conversion.
    (CVE-2026-31789)


Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - "before 2am" (UTC).

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate Bot enabled auto-merge (squash) April 7, 2026 14:17
@renovate renovate Bot merged commit c40c4c6 into master Apr 7, 2026
1 check passed
@renovate renovate Bot deleted the renovate/openssl-openssl-3.x branch April 7, 2026 14:23
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants