Please update OpenSSL

Hi PyArrow team,

Our scanners are reporting high-severity vulnerabilities in the statically linked OpenSSL in `libarrow.so`, such as [CVE-2025-15467](https://nvd.nist.gov/vuln/detail/CVE-2025-15467) with [CVSS 3.1 Base Score: 9.8](https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?name=CVE-2025-15467&vector=AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H&version=3.1&source=CISA-ADP) and [11 more](https://aisle.com/blog/aisle-discovered-12-out-of-12-openssl-vulnerabilities).

Would it be possible to update it to version 3.5.5 or higher as suggested here, please?
> OpenSSL 3.5 users should upgrade to OpenSSL 3.5.5.

https://openssl-library.org/news/secadv/20260127.txt

Thanks,
Milan

### Component(s)

Other

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Please update OpenSSL #49089

Component(s)

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Please update OpenSSL #49089

Description

Component(s)

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions