{
"document": {
"aggregate_severity": {
"text": "Medium"
},
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "TuxCare License Agreement",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Cloud Linux Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://tuxcare.com/contact/",
"name": "TuxCare",
"namespace": "https://tuxcare.com/"
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.tuxcare.com/csaf/v2/els_os/oraclelinux7els/vex/2025/cve-2025-69418-els_os-oraclelinux7els.json"
}
],
"tracking": {
"current_release_date": "2026-02-10T14:39:45Z",
"generator": {
"date": "2026-02-10T14:39:45Z",
"engine": {
"name": "pyCSAF"
}
},
"id": "CVE-2025-69418-ELS_OS-ORACLELINUX7ELS",
"initial_release_date": "2025-01-01T00:00:00Z",
"revision_history": [
{
"date": "2025-01-01T00:00:00Z",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-02-10T14:39:45Z",
"number": "2",
"summary": "Official Publication"
}
],
"status": "final",
"version": "2"
},
"title": "Security update on CVE-2025-69418"
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux 7",
"product": {
"name": "Oracle Linux 7",
"product_id": "Oracle-Linux-7",
"product_identification_helper": {
"cpe": "cpe:2.3:o:oracle:linux:7:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_family",
"name": "Oracle Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-1:1.0.2k-26.el7_9.x86_64",
"product": {
"name": "openssl-1:1.0.2k-26.el7_9.x86_64",
"product_id": "openssl-1:1.0.2k-26.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/oracle/openssl@1.0.2k-26.el7_9?arch=x86_64&epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.2k-26.el7_9.x86_64",
"product": {
"name": "openssl-devel-1:1.0.2k-26.el7_9.x86_64",
"product_id": "openssl-devel-1:1.0.2k-26.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/oracle/openssl-devel@1.0.2k-26.el7_9?arch=x86_64&epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.2k-26.el7_9.x86_64",
"product": {
"name": "openssl-libs-1:1.0.2k-26.el7_9.x86_64",
"product_id": "openssl-libs-1:1.0.2k-26.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/oracle/openssl-libs@1.0.2k-26.el7_9?arch=x86_64&epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.0.2k-26.el7_9.x86_64",
"product": {
"name": "openssl-perl-1:1.0.2k-26.el7_9.x86_64",
"product_id": "openssl-perl-1:1.0.2k-26.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/oracle/openssl-perl@1.0.2k-26.el7_9?arch=x86_64&epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.2k-26.el7_9.x86_64",
"product": {
"name": "openssl-static-1:1.0.2k-26.el7_9.x86_64",
"product_id": "openssl-static-1:1.0.2k-26.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/oracle/openssl-static@1.0.2k-26.el7_9?arch=x86_64&epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-devel-1:1.0.2k-26.el7_9.i686",
"product": {
"name": "openssl-devel-1:1.0.2k-26.el7_9.i686",
"product_id": "openssl-devel-1:1.0.2k-26.el7_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/oracle/openssl-devel@1.0.2k-26.el7_9?arch=i686&epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.2k-26.el7_9.i686",
"product": {
"name": "openssl-libs-1:1.0.2k-26.el7_9.i686",
"product_id": "openssl-libs-1:1.0.2k-26.el7_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/oracle/openssl-libs@1.0.2k-26.el7_9?arch=i686&epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.2k-26.el7_9.i686",
"product": {
"name": "openssl-static-1:1.0.2k-26.el7_9.i686",
"product_id": "openssl-static-1:1.0.2k-26.el7_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/oracle/openssl-static@1.0.2k-26.el7_9?arch=i686&epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
}
],
"category": "vendor",
"name": "Oracle Corporation"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "openssl-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"product": {
"name": "openssl-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"product_id": "openssl-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/tuxcare/openssl@1.0.2k-26.el7_9.tuxcare.els6?arch=x86_64&epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"product": {
"name": "openssl-devel-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"product_id": "openssl-devel-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/tuxcare/openssl-devel@1.0.2k-26.el7_9.tuxcare.els6?arch=x86_64&epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"product": {
"name": "openssl-libs-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"product_id": "openssl-libs-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/tuxcare/openssl-libs@1.0.2k-26.el7_9.tuxcare.els6?arch=x86_64&epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"product": {
"name": "openssl-perl-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"product_id": "openssl-perl-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/tuxcare/openssl-perl@1.0.2k-26.el7_9.tuxcare.els6?arch=x86_64&epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"product": {
"name": "openssl-static-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"product_id": "openssl-static-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/tuxcare/openssl-static@1.0.2k-26.el7_9.tuxcare.els6?arch=x86_64&epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-devel-1:1.0.2k-26.el7_9.tuxcare.els6.i686",
"product": {
"name": "openssl-devel-1:1.0.2k-26.el7_9.tuxcare.els6.i686",
"product_id": "openssl-devel-1:1.0.2k-26.el7_9.tuxcare.els6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/tuxcare/openssl-devel@1.0.2k-26.el7_9.tuxcare.els6?arch=i686&epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.2k-26.el7_9.tuxcare.els6.i686",
"product": {
"name": "openssl-libs-1:1.0.2k-26.el7_9.tuxcare.els6.i686",
"product_id": "openssl-libs-1:1.0.2k-26.el7_9.tuxcare.els6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/tuxcare/openssl-libs@1.0.2k-26.el7_9.tuxcare.els6?arch=i686&epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.2k-26.el7_9.tuxcare.els6.i686",
"product": {
"name": "openssl-static-1:1.0.2k-26.el7_9.tuxcare.els6.i686",
"product_id": "openssl-static-1:1.0.2k-26.el7_9.tuxcare.els6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/tuxcare/openssl-static@1.0.2k-26.el7_9.tuxcare.els6?arch=i686&epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
}
],
"category": "vendor",
"name": "TuxCare"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64 as a component of Oracle Linux 7",
"product_id": "Oracle-Linux-7:openssl-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64"
},
"product_reference": "openssl-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"relates_to_product_reference": "Oracle-Linux-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-26.el7_9.x86_64 as a component of Oracle Linux 7",
"product_id": "Oracle-Linux-7:openssl-1:1.0.2k-26.el7_9.x86_64"
},
"product_reference": "openssl-1:1.0.2k-26.el7_9.x86_64",
"relates_to_product_reference": "Oracle-Linux-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-26.el7_9.tuxcare.els6.i686 as a component of Oracle Linux 7",
"product_id": "Oracle-Linux-7:openssl-devel-1:1.0.2k-26.el7_9.tuxcare.els6.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-26.el7_9.tuxcare.els6.i686",
"relates_to_product_reference": "Oracle-Linux-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-26.el7_9.i686 as a component of Oracle Linux 7",
"product_id": "Oracle-Linux-7:openssl-devel-1:1.0.2k-26.el7_9.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-26.el7_9.i686",
"relates_to_product_reference": "Oracle-Linux-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64 as a component of Oracle Linux 7",
"product_id": "Oracle-Linux-7:openssl-devel-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"relates_to_product_reference": "Oracle-Linux-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-26.el7_9.x86_64 as a component of Oracle Linux 7",
"product_id": "Oracle-Linux-7:openssl-devel-1:1.0.2k-26.el7_9.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-26.el7_9.x86_64",
"relates_to_product_reference": "Oracle-Linux-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-26.el7_9.tuxcare.els6.i686 as a component of Oracle Linux 7",
"product_id": "Oracle-Linux-7:openssl-libs-1:1.0.2k-26.el7_9.tuxcare.els6.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-26.el7_9.tuxcare.els6.i686",
"relates_to_product_reference": "Oracle-Linux-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-26.el7_9.i686 as a component of Oracle Linux 7",
"product_id": "Oracle-Linux-7:openssl-libs-1:1.0.2k-26.el7_9.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-26.el7_9.i686",
"relates_to_product_reference": "Oracle-Linux-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64 as a component of Oracle Linux 7",
"product_id": "Oracle-Linux-7:openssl-libs-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"relates_to_product_reference": "Oracle-Linux-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-26.el7_9.x86_64 as a component of Oracle Linux 7",
"product_id": "Oracle-Linux-7:openssl-libs-1:1.0.2k-26.el7_9.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-26.el7_9.x86_64",
"relates_to_product_reference": "Oracle-Linux-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64 as a component of Oracle Linux 7",
"product_id": "Oracle-Linux-7:openssl-perl-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"relates_to_product_reference": "Oracle-Linux-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-26.el7_9.x86_64 as a component of Oracle Linux 7",
"product_id": "Oracle-Linux-7:openssl-perl-1:1.0.2k-26.el7_9.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-26.el7_9.x86_64",
"relates_to_product_reference": "Oracle-Linux-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-26.el7_9.tuxcare.els6.i686 as a component of Oracle Linux 7",
"product_id": "Oracle-Linux-7:openssl-static-1:1.0.2k-26.el7_9.tuxcare.els6.i686"
},
"product_reference": "openssl-static-1:1.0.2k-26.el7_9.tuxcare.els6.i686",
"relates_to_product_reference": "Oracle-Linux-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-26.el7_9.i686 as a component of Oracle Linux 7",
"product_id": "Oracle-Linux-7:openssl-static-1:1.0.2k-26.el7_9.i686"
},
"product_reference": "openssl-static-1:1.0.2k-26.el7_9.i686",
"relates_to_product_reference": "Oracle-Linux-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64 as a component of Oracle Linux 7",
"product_id": "Oracle-Linux-7:openssl-static-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"relates_to_product_reference": "Oracle-Linux-7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-26.el7_9.x86_64 as a component of Oracle Linux 7",
"product_id": "Oracle-Linux-7:openssl-static-1:1.0.2k-26.el7_9.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-26.el7_9.x86_64",
"relates_to_product_reference": "Oracle-Linux-7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-69418",
"cwe": {
"id": "CWE-325",
"name": "Missing Cryptographic Step"
},
"notes": [
{
"category": "description",
"text": "Issue summary: When using the low-level OCB API directly with AES-NI or
other hardware-accelerated code paths, inputs whose length is not a multiple
of 16 bytes can leave the final partial block unencrypted and unauthenticated.
Impact summary: The trailing 1-15 bytes of a message may be exposed in
cleartext on encryption and are not covered by the authentication tag,
allowing an attacker to read or tamper with those bytes without detection.
The low-level OCB encrypt and decrypt routines in the hardware-accelerated
stream path process full 16-byte blocks but do not advance the input/output
pointers. The subsequent tail-handling code then operates on the original
base pointers, effectively reprocessing the beginning of the buffer while
leaving the actual trailing bytes unprocessed. The authentication checksum
also excludes the true tail bytes.
However, typical OpenSSL consumers using EVP are not affected because the
higher-level EVP and provider OCB implementations split inputs so that full
blocks and trailing partial blocks are processed in separate calls, avoiding
the problematic code path. Additionally, TLS does not use OCB ciphersuites.
The vulnerability only affects applications that call the low-level
CRYPTO_ocb128_encrypt() or CRYPTO_ocb128_decrypt() functions directly with
non-block-aligned lengths in a single call on hardware-accelerated builds.
For these reasons the issue was assessed as Low severity.
The FIPS modules in 3.6, 3.5, 3.4, 3.3, 3.2, 3.1 and 3.0 are not affected
by this issue, as OCB mode is not a FIPS-approved algorithm.
OpenSSL 3.6, 3.5, 3.4, 3.3, 3.0 and 1.1.1 are vulnerable to this issue.
OpenSSL 1.0.2 is not affected by this issue.",
"title": "Vulnerability description"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"known_affected": [
"Oracle-Linux-7:openssl-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"Oracle-Linux-7:openssl-1:1.0.2k-26.el7_9.x86_64",
"Oracle-Linux-7:openssl-devel-1:1.0.2k-26.el7_9.i686",
"Oracle-Linux-7:openssl-devel-1:1.0.2k-26.el7_9.tuxcare.els6.i686",
"Oracle-Linux-7:openssl-devel-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"Oracle-Linux-7:openssl-devel-1:1.0.2k-26.el7_9.x86_64",
"Oracle-Linux-7:openssl-libs-1:1.0.2k-26.el7_9.i686",
"Oracle-Linux-7:openssl-libs-1:1.0.2k-26.el7_9.tuxcare.els6.i686",
"Oracle-Linux-7:openssl-libs-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"Oracle-Linux-7:openssl-libs-1:1.0.2k-26.el7_9.x86_64",
"Oracle-Linux-7:openssl-perl-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"Oracle-Linux-7:openssl-perl-1:1.0.2k-26.el7_9.x86_64",
"Oracle-Linux-7:openssl-static-1:1.0.2k-26.el7_9.i686",
"Oracle-Linux-7:openssl-static-1:1.0.2k-26.el7_9.tuxcare.els6.i686",
"Oracle-Linux-7:openssl-static-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"Oracle-Linux-7:openssl-static-1:1.0.2k-26.el7_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://cve.tuxcare.com/els/cve/CVE-2025-69418"
}
],
"release_date": "2026-01-27T00:00:00Z",
"remediations": [
{
"category": "no_fix_planned",
"details": "This flaw only triggers when an application directly calls the low‑level CRYPTO_ocb128_{encrypt,decrypt} functions on a hardware‑accelerated build and passes a non‑16‑byte‑aligned buffer in a single call; the standard EVP/provider paths and TLS do not reach this code, and FIPS modules are unaffected. Even then, exposure is limited to the final 1–15 bytes of a message with no availability impact, yielding low practical risk. In enterprise server/VM deployments that use OpenSSL via the EVP API (e.g., for TLS) rather than custom low‑level OCB calls, this code path is not exercised, so this CVE can be safely deprioritized.",
"product_ids": [
"Oracle-Linux-7:openssl-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"Oracle-Linux-7:openssl-1:1.0.2k-26.el7_9.x86_64",
"Oracle-Linux-7:openssl-devel-1:1.0.2k-26.el7_9.i686",
"Oracle-Linux-7:openssl-devel-1:1.0.2k-26.el7_9.tuxcare.els6.i686",
"Oracle-Linux-7:openssl-devel-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"Oracle-Linux-7:openssl-devel-1:1.0.2k-26.el7_9.x86_64",
"Oracle-Linux-7:openssl-libs-1:1.0.2k-26.el7_9.i686",
"Oracle-Linux-7:openssl-libs-1:1.0.2k-26.el7_9.tuxcare.els6.i686",
"Oracle-Linux-7:openssl-libs-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"Oracle-Linux-7:openssl-libs-1:1.0.2k-26.el7_9.x86_64",
"Oracle-Linux-7:openssl-perl-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"Oracle-Linux-7:openssl-perl-1:1.0.2k-26.el7_9.x86_64",
"Oracle-Linux-7:openssl-static-1:1.0.2k-26.el7_9.i686",
"Oracle-Linux-7:openssl-static-1:1.0.2k-26.el7_9.tuxcare.els6.i686",
"Oracle-Linux-7:openssl-static-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"Oracle-Linux-7:openssl-static-1:1.0.2k-26.el7_9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"Oracle-Linux-7:openssl-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"Oracle-Linux-7:openssl-1:1.0.2k-26.el7_9.x86_64",
"Oracle-Linux-7:openssl-devel-1:1.0.2k-26.el7_9.i686",
"Oracle-Linux-7:openssl-devel-1:1.0.2k-26.el7_9.tuxcare.els6.i686",
"Oracle-Linux-7:openssl-devel-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"Oracle-Linux-7:openssl-devel-1:1.0.2k-26.el7_9.x86_64",
"Oracle-Linux-7:openssl-libs-1:1.0.2k-26.el7_9.i686",
"Oracle-Linux-7:openssl-libs-1:1.0.2k-26.el7_9.tuxcare.els6.i686",
"Oracle-Linux-7:openssl-libs-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"Oracle-Linux-7:openssl-libs-1:1.0.2k-26.el7_9.x86_64",
"Oracle-Linux-7:openssl-perl-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"Oracle-Linux-7:openssl-perl-1:1.0.2k-26.el7_9.x86_64",
"Oracle-Linux-7:openssl-static-1:1.0.2k-26.el7_9.i686",
"Oracle-Linux-7:openssl-static-1:1.0.2k-26.el7_9.tuxcare.els6.i686",
"Oracle-Linux-7:openssl-static-1:1.0.2k-26.el7_9.tuxcare.els6.x86_64",
"Oracle-Linux-7:openssl-static-1:1.0.2k-26.el7_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
]
}
]
}