{
	"document":{
		"aggregate_severity":{
			"namespace":"https://nvd.nist.gov/vuln-metrics/cvss",
			"text":"HIGH"
		},
		"category":"csaf_vex",
		"csaf_version":"2.0",
		"distribution":{
			"tlp":{
				"label":"WHITE",
				"url":"https:/www.first.org/tlp/"
			}
		},
		"lang":"en",
		"notes":[
			{
				"text":"Issue summary: An attacker-controlled CMP (Certificate Management Protocol)\nserver could trigger a NULL pointer dereference in a CMP client application.\n\nImpact summary: A NULL pointer dereference causes a crash of the\napplication and a Denial of Service.\n\nAn attacker controlling a CMP server (or acting as a man-in-the-middle) could\ncraft a CMP response containing a CRMF (Certificate Request Message Format)\nCertRepMessage with an EncryptedValue structure where the symmAlg field\nhas an algorithm OID but no parameters field. When the OpenSSL CMP client\nprocesses this response, the NULL dereference occurs, causing a crash of\nthe CMP client.\n\nApplications that process untrusted CMP/CRMF messages may be affected.\n\nThe FIPS modules in 4.0, 3.6, 3.5, 3.4, and 3.0 are not affected by this\nissue, as the affected code is outside the OpenSSL FIPS module boundary.",
				"category":"general",
				"title":"Synopsis"
			}
		],
		"publisher":null,
		"references":[
			{
				"summary":"nvd cve",
				"category":"external",
				"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-42767"
			},
			{
				"summary":"CVE-2026-42767 vex file",
				"category":"self",
				"url":"https://repo.openeuler.org/security/data/csaf/cve/2026/csaf-openeuler-cve-2026-42767.json"
			},
			{
				"summary":"openEuler-SA-2026-2782",
				"category":"self",
				"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2782"
			},
			{
				"summary":"CVE-2026-42767",
				"category":"self",
				"url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-42767&packageName=openssl"
			}
		],
		"title":"openEuler cve CVE-2026-42767",
		"tracking":{
			"initial_release_date":"2026-06-30T20:15:08+08:00",
			"revision_history":[
				{
					"date":"2026-06-30T20:15:08+08:00",
					"summary":"Initial",
					"number":"1.0.0"
				}
			],
			"generator":{
				"date":"2026-06-30T20:15:08+08:00",
				"engine":{
					"name":"openEuler CSAF Tool V1.0"
				}
			},
			"current_release_date":"2026-06-30T20:15:08+08:00",
			"id":"CVE-2026-42767",
			"version":"1.0.0",
			"status":"interim"
		}
	},
	"product_tree":{
		"branches":[
			{
				"name":"openEuler",
				"category":"vendor",
				"branches":[
					{
						"name":"openEuler",
						"branches":[
							{
								"product":{
									"product_identification_helper":{
										"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP3"
									},
									"product_id":"openEuler-24.03-LTS-SP3",
									"name":"openEuler-24.03-LTS-SP3"
								},
								"name":"openEuler-24.03-LTS-SP3",
								"category":"product_version"
							}
						],
						"category":"product_name"
					},
					{
						"name":"aarch64",
						"branches":[
							{
								"product":{
									"product_identification_helper":{
										"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP3"
									},
									"product_id":"openssl-3.0.12-52.oe2403sp3.aarch64.rpm",
									"name":"openssl-3.0.12-52.oe2403sp3.aarch64.rpm"
								},
								"name":"openssl-3.0.12-52.oe2403sp3.aarch64.rpm",
								"category":"product_version"
							},
							{
								"product":{
									"product_identification_helper":{
										"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP3"
									},
									"product_id":"openssl-debuginfo-3.0.12-52.oe2403sp3.aarch64.rpm",
									"name":"openssl-debuginfo-3.0.12-52.oe2403sp3.aarch64.rpm"
								},
								"name":"openssl-debuginfo-3.0.12-52.oe2403sp3.aarch64.rpm",
								"category":"product_version"
							},
							{
								"product":{
									"product_identification_helper":{
										"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP3"
									},
									"product_id":"openssl-debugsource-3.0.12-52.oe2403sp3.aarch64.rpm",
									"name":"openssl-debugsource-3.0.12-52.oe2403sp3.aarch64.rpm"
								},
								"name":"openssl-debugsource-3.0.12-52.oe2403sp3.aarch64.rpm",
								"category":"product_version"
							},
							{
								"product":{
									"product_identification_helper":{
										"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP3"
									},
									"product_id":"openssl-devel-3.0.12-52.oe2403sp3.aarch64.rpm",
									"name":"openssl-devel-3.0.12-52.oe2403sp3.aarch64.rpm"
								},
								"name":"openssl-devel-3.0.12-52.oe2403sp3.aarch64.rpm",
								"category":"product_version"
							},
							{
								"product":{
									"product_identification_helper":{
										"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP3"
									},
									"product_id":"openssl-libs-3.0.12-52.oe2403sp3.aarch64.rpm",
									"name":"openssl-libs-3.0.12-52.oe2403sp3.aarch64.rpm"
								},
								"name":"openssl-libs-3.0.12-52.oe2403sp3.aarch64.rpm",
								"category":"product_version"
							},
							{
								"product":{
									"product_identification_helper":{
										"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP3"
									},
									"product_id":"openssl-perl-3.0.12-52.oe2403sp3.aarch64.rpm",
									"name":"openssl-perl-3.0.12-52.oe2403sp3.aarch64.rpm"
								},
								"name":"openssl-perl-3.0.12-52.oe2403sp3.aarch64.rpm",
								"category":"product_version"
							}
						],
						"category":"architecture"
					},
					{
						"name":"src",
						"branches":[
							{
								"product":{
									"product_identification_helper":{
										"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP3"
									},
									"product_id":"openssl-3.0.12-52.oe2403sp3.src.rpm",
									"name":"openssl-3.0.12-52.oe2403sp3.src.rpm"
								},
								"name":"openssl-3.0.12-52.oe2403sp3.src.rpm",
								"category":"product_version"
							}
						],
						"category":"architecture"
					},
					{
						"name":"x86_64",
						"branches":[
							{
								"product":{
									"product_identification_helper":{
										"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP3"
									},
									"product_id":"openssl-3.0.12-52.oe2403sp3.x86_64.rpm",
									"name":"openssl-3.0.12-52.oe2403sp3.x86_64.rpm"
								},
								"name":"openssl-3.0.12-52.oe2403sp3.x86_64.rpm",
								"category":"product_version"
							},
							{
								"product":{
									"product_identification_helper":{
										"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP3"
									},
									"product_id":"openssl-debuginfo-3.0.12-52.oe2403sp3.x86_64.rpm",
									"name":"openssl-debuginfo-3.0.12-52.oe2403sp3.x86_64.rpm"
								},
								"name":"openssl-debuginfo-3.0.12-52.oe2403sp3.x86_64.rpm",
								"category":"product_version"
							},
							{
								"product":{
									"product_identification_helper":{
										"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP3"
									},
									"product_id":"openssl-debugsource-3.0.12-52.oe2403sp3.x86_64.rpm",
									"name":"openssl-debugsource-3.0.12-52.oe2403sp3.x86_64.rpm"
								},
								"name":"openssl-debugsource-3.0.12-52.oe2403sp3.x86_64.rpm",
								"category":"product_version"
							},
							{
								"product":{
									"product_identification_helper":{
										"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP3"
									},
									"product_id":"openssl-devel-3.0.12-52.oe2403sp3.x86_64.rpm",
									"name":"openssl-devel-3.0.12-52.oe2403sp3.x86_64.rpm"
								},
								"name":"openssl-devel-3.0.12-52.oe2403sp3.x86_64.rpm",
								"category":"product_version"
							},
							{
								"product":{
									"product_identification_helper":{
										"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP3"
									},
									"product_id":"openssl-libs-3.0.12-52.oe2403sp3.x86_64.rpm",
									"name":"openssl-libs-3.0.12-52.oe2403sp3.x86_64.rpm"
								},
								"name":"openssl-libs-3.0.12-52.oe2403sp3.x86_64.rpm",
								"category":"product_version"
							},
							{
								"product":{
									"product_identification_helper":{
										"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP3"
									},
									"product_id":"openssl-perl-3.0.12-52.oe2403sp3.x86_64.rpm",
									"name":"openssl-perl-3.0.12-52.oe2403sp3.x86_64.rpm"
								},
								"name":"openssl-perl-3.0.12-52.oe2403sp3.x86_64.rpm",
								"category":"product_version"
							}
						],
						"category":"architecture"
					},
					{
						"name":"noarch",
						"branches":[
							{
								"product":{
									"product_identification_helper":{
										"cpe":"cpe:/a:openEuler:openEuler:24.03-LTS-SP3"
									},
									"product_id":"openssl-help-3.0.12-52.oe2403sp3.noarch.rpm",
									"name":"openssl-help-3.0.12-52.oe2403sp3.noarch.rpm"
								},
								"name":"openssl-help-3.0.12-52.oe2403sp3.noarch.rpm",
								"category":"product_version"
							}
						],
						"category":"architecture"
					}
				]
			}
		],
		"relationships":[
			{
				"relates_to_product_reference":"openEuler-24.03-LTS-SP3",
				"product_reference":"openssl-3.0.12-52.oe2403sp3.aarch64.rpm",
				"full_product_name":{
					"product_id":"openEuler-24.03-LTS-SP3:openssl-3.0.12-52.oe2403sp3.aarch64",
					"name":"openssl-3.0.12-52.oe2403sp3.aarch64 as a component of openEuler-24.03-LTS-SP3"
				},
				"category":"default_component_of"
			},
			{
				"relates_to_product_reference":"openEuler-24.03-LTS-SP3",
				"product_reference":"openssl-debuginfo-3.0.12-52.oe2403sp3.aarch64.rpm",
				"full_product_name":{
					"product_id":"openEuler-24.03-LTS-SP3:openssl-debuginfo-3.0.12-52.oe2403sp3.aarch64",
					"name":"openssl-debuginfo-3.0.12-52.oe2403sp3.aarch64 as a component of openEuler-24.03-LTS-SP3"
				},
				"category":"default_component_of"
			},
			{
				"relates_to_product_reference":"openEuler-24.03-LTS-SP3",
				"product_reference":"openssl-debugsource-3.0.12-52.oe2403sp3.aarch64.rpm",
				"full_product_name":{
					"product_id":"openEuler-24.03-LTS-SP3:openssl-debugsource-3.0.12-52.oe2403sp3.aarch64",
					"name":"openssl-debugsource-3.0.12-52.oe2403sp3.aarch64 as a component of openEuler-24.03-LTS-SP3"
				},
				"category":"default_component_of"
			},
			{
				"relates_to_product_reference":"openEuler-24.03-LTS-SP3",
				"product_reference":"openssl-devel-3.0.12-52.oe2403sp3.aarch64.rpm",
				"full_product_name":{
					"product_id":"openEuler-24.03-LTS-SP3:openssl-devel-3.0.12-52.oe2403sp3.aarch64",
					"name":"openssl-devel-3.0.12-52.oe2403sp3.aarch64 as a component of openEuler-24.03-LTS-SP3"
				},
				"category":"default_component_of"
			},
			{
				"relates_to_product_reference":"openEuler-24.03-LTS-SP3",
				"product_reference":"openssl-libs-3.0.12-52.oe2403sp3.aarch64.rpm",
				"full_product_name":{
					"product_id":"openEuler-24.03-LTS-SP3:openssl-libs-3.0.12-52.oe2403sp3.aarch64",
					"name":"openssl-libs-3.0.12-52.oe2403sp3.aarch64 as a component of openEuler-24.03-LTS-SP3"
				},
				"category":"default_component_of"
			},
			{
				"relates_to_product_reference":"openEuler-24.03-LTS-SP3",
				"product_reference":"openssl-perl-3.0.12-52.oe2403sp3.aarch64.rpm",
				"full_product_name":{
					"product_id":"openEuler-24.03-LTS-SP3:openssl-perl-3.0.12-52.oe2403sp3.aarch64",
					"name":"openssl-perl-3.0.12-52.oe2403sp3.aarch64 as a component of openEuler-24.03-LTS-SP3"
				},
				"category":"default_component_of"
			},
			{
				"relates_to_product_reference":"openEuler-24.03-LTS-SP3",
				"product_reference":"openssl-3.0.12-52.oe2403sp3.src.rpm",
				"full_product_name":{
					"product_id":"openEuler-24.03-LTS-SP3:openssl-3.0.12-52.oe2403sp3.src",
					"name":"openssl-3.0.12-52.oe2403sp3.src as a component of openEuler-24.03-LTS-SP3"
				},
				"category":"default_component_of"
			},
			{
				"relates_to_product_reference":"openEuler-24.03-LTS-SP3",
				"product_reference":"openssl-3.0.12-52.oe2403sp3.x86_64.rpm",
				"full_product_name":{
					"product_id":"openEuler-24.03-LTS-SP3:openssl-3.0.12-52.oe2403sp3.x86_64",
					"name":"openssl-3.0.12-52.oe2403sp3.x86_64 as a component of openEuler-24.03-LTS-SP3"
				},
				"category":"default_component_of"
			},
			{
				"relates_to_product_reference":"openEuler-24.03-LTS-SP3",
				"product_reference":"openssl-debuginfo-3.0.12-52.oe2403sp3.x86_64.rpm",
				"full_product_name":{
					"product_id":"openEuler-24.03-LTS-SP3:openssl-debuginfo-3.0.12-52.oe2403sp3.x86_64",
					"name":"openssl-debuginfo-3.0.12-52.oe2403sp3.x86_64 as a component of openEuler-24.03-LTS-SP3"
				},
				"category":"default_component_of"
			},
			{
				"relates_to_product_reference":"openEuler-24.03-LTS-SP3",
				"product_reference":"openssl-debugsource-3.0.12-52.oe2403sp3.x86_64.rpm",
				"full_product_name":{
					"product_id":"openEuler-24.03-LTS-SP3:openssl-debugsource-3.0.12-52.oe2403sp3.x86_64",
					"name":"openssl-debugsource-3.0.12-52.oe2403sp3.x86_64 as a component of openEuler-24.03-LTS-SP3"
				},
				"category":"default_component_of"
			},
			{
				"relates_to_product_reference":"openEuler-24.03-LTS-SP3",
				"product_reference":"openssl-devel-3.0.12-52.oe2403sp3.x86_64.rpm",
				"full_product_name":{
					"product_id":"openEuler-24.03-LTS-SP3:openssl-devel-3.0.12-52.oe2403sp3.x86_64",
					"name":"openssl-devel-3.0.12-52.oe2403sp3.x86_64 as a component of openEuler-24.03-LTS-SP3"
				},
				"category":"default_component_of"
			},
			{
				"relates_to_product_reference":"openEuler-24.03-LTS-SP3",
				"product_reference":"openssl-libs-3.0.12-52.oe2403sp3.x86_64.rpm",
				"full_product_name":{
					"product_id":"openEuler-24.03-LTS-SP3:openssl-libs-3.0.12-52.oe2403sp3.x86_64",
					"name":"openssl-libs-3.0.12-52.oe2403sp3.x86_64 as a component of openEuler-24.03-LTS-SP3"
				},
				"category":"default_component_of"
			},
			{
				"relates_to_product_reference":"openEuler-24.03-LTS-SP3",
				"product_reference":"openssl-perl-3.0.12-52.oe2403sp3.x86_64.rpm",
				"full_product_name":{
					"product_id":"openEuler-24.03-LTS-SP3:openssl-perl-3.0.12-52.oe2403sp3.x86_64",
					"name":"openssl-perl-3.0.12-52.oe2403sp3.x86_64 as a component of openEuler-24.03-LTS-SP3"
				},
				"category":"default_component_of"
			},
			{
				"relates_to_product_reference":"openEuler-24.03-LTS-SP3",
				"product_reference":"openssl-help-3.0.12-52.oe2403sp3.noarch.rpm",
				"full_product_name":{
					"product_id":"openEuler-24.03-LTS-SP3:openssl-help-3.0.12-52.oe2403sp3.noarch",
					"name":"openssl-help-3.0.12-52.oe2403sp3.noarch as a component of openEuler-24.03-LTS-SP3"
				},
				"category":"default_component_of"
			}
		]
	},
	"vulnerabilities":[
		{
			"cve":"CVE-2026-42767",
			"notes":[
				{
					"text":"Issue summary: An attacker-controlled CMP (Certificate Management Protocol)\nserver could trigger a NULL pointer dereference in a CMP client application.\n\nImpact summary: A NULL pointer dereference causes a crash of the\napplication and a Denial of Service.\n\nAn attacker controlling a CMP server (or acting as a man-in-the-middle) could\ncraft a CMP response containing a CRMF (Certificate Request Message Format)\nCertRepMessage with an EncryptedValue structure where the symmAlg field\nhas an algorithm OID but no parameters field. When the OpenSSL CMP client\nprocesses this response, the NULL dereference occurs, causing a crash of\nthe CMP client.\n\nApplications that process untrusted CMP/CRMF messages may be affected.\n\nThe FIPS modules in 4.0, 3.6, 3.5, 3.4, and 3.0 are not affected by this\nissue, as the affected code is outside the OpenSSL FIPS module boundary.",
					"category":"description",
					"title":"Vulnerability Description"
				}
			],
			"product_status":{
				"fixed":[
					"openEuler-24.03-LTS-SP3:openssl-3.0.12-52.oe2403sp3.aarch64",
					"openEuler-24.03-LTS-SP3:openssl-debuginfo-3.0.12-52.oe2403sp3.aarch64",
					"openEuler-24.03-LTS-SP3:openssl-debugsource-3.0.12-52.oe2403sp3.aarch64",
					"openEuler-24.03-LTS-SP3:openssl-devel-3.0.12-52.oe2403sp3.aarch64",
					"openEuler-24.03-LTS-SP3:openssl-libs-3.0.12-52.oe2403sp3.aarch64",
					"openEuler-24.03-LTS-SP3:openssl-perl-3.0.12-52.oe2403sp3.aarch64",
					"openEuler-24.03-LTS-SP3:openssl-3.0.12-52.oe2403sp3.src",
					"openEuler-24.03-LTS-SP3:openssl-3.0.12-52.oe2403sp3.x86_64",
					"openEuler-24.03-LTS-SP3:openssl-debuginfo-3.0.12-52.oe2403sp3.x86_64",
					"openEuler-24.03-LTS-SP3:openssl-debugsource-3.0.12-52.oe2403sp3.x86_64",
					"openEuler-24.03-LTS-SP3:openssl-devel-3.0.12-52.oe2403sp3.x86_64",
					"openEuler-24.03-LTS-SP3:openssl-libs-3.0.12-52.oe2403sp3.x86_64",
					"openEuler-24.03-LTS-SP3:openssl-perl-3.0.12-52.oe2403sp3.x86_64",
					"openEuler-24.03-LTS-SP3:openssl-help-3.0.12-52.oe2403sp3.noarch"
				]
			},
			"remediations":[
				{
					"product_ids":[
						"openEuler-24.03-LTS-SP3:openssl-3.0.12-52.oe2403sp3.aarch64",
						"openEuler-24.03-LTS-SP3:openssl-debuginfo-3.0.12-52.oe2403sp3.aarch64",
						"openEuler-24.03-LTS-SP3:openssl-debugsource-3.0.12-52.oe2403sp3.aarch64",
						"openEuler-24.03-LTS-SP3:openssl-devel-3.0.12-52.oe2403sp3.aarch64",
						"openEuler-24.03-LTS-SP3:openssl-libs-3.0.12-52.oe2403sp3.aarch64",
						"openEuler-24.03-LTS-SP3:openssl-perl-3.0.12-52.oe2403sp3.aarch64",
						"openEuler-24.03-LTS-SP3:openssl-3.0.12-52.oe2403sp3.src",
						"openEuler-24.03-LTS-SP3:openssl-3.0.12-52.oe2403sp3.x86_64",
						"openEuler-24.03-LTS-SP3:openssl-debuginfo-3.0.12-52.oe2403sp3.x86_64",
						"openEuler-24.03-LTS-SP3:openssl-debugsource-3.0.12-52.oe2403sp3.x86_64",
						"openEuler-24.03-LTS-SP3:openssl-devel-3.0.12-52.oe2403sp3.x86_64",
						"openEuler-24.03-LTS-SP3:openssl-libs-3.0.12-52.oe2403sp3.x86_64",
						"openEuler-24.03-LTS-SP3:openssl-perl-3.0.12-52.oe2403sp3.x86_64",
						"openEuler-24.03-LTS-SP3:openssl-help-3.0.12-52.oe2403sp3.noarch"
					],
					"details":"openssl security update",
					"category":"vendor_fix",
					"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2782"
				}
			],
			"scores":[
				{
					"cvss_v3":{
						"baseSeverity":"MEDIUM",
						"baseScore":5.9,
						"vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
						"version":"3.1"
					},
					"products":[
						"openEuler-24.03-LTS-SP3:openssl-3.0.12-52.oe2403sp3.aarch64",
						"openEuler-24.03-LTS-SP3:openssl-debuginfo-3.0.12-52.oe2403sp3.aarch64",
						"openEuler-24.03-LTS-SP3:openssl-debugsource-3.0.12-52.oe2403sp3.aarch64",
						"openEuler-24.03-LTS-SP3:openssl-devel-3.0.12-52.oe2403sp3.aarch64",
						"openEuler-24.03-LTS-SP3:openssl-libs-3.0.12-52.oe2403sp3.aarch64",
						"openEuler-24.03-LTS-SP3:openssl-perl-3.0.12-52.oe2403sp3.aarch64",
						"openEuler-24.03-LTS-SP3:openssl-3.0.12-52.oe2403sp3.src",
						"openEuler-24.03-LTS-SP3:openssl-3.0.12-52.oe2403sp3.x86_64",
						"openEuler-24.03-LTS-SP3:openssl-debuginfo-3.0.12-52.oe2403sp3.x86_64",
						"openEuler-24.03-LTS-SP3:openssl-debugsource-3.0.12-52.oe2403sp3.x86_64",
						"openEuler-24.03-LTS-SP3:openssl-devel-3.0.12-52.oe2403sp3.x86_64",
						"openEuler-24.03-LTS-SP3:openssl-libs-3.0.12-52.oe2403sp3.x86_64",
						"openEuler-24.03-LTS-SP3:openssl-perl-3.0.12-52.oe2403sp3.x86_64",
						"openEuler-24.03-LTS-SP3:openssl-help-3.0.12-52.oe2403sp3.noarch"
					]
				}
			],
			"threats":[
				{
					"details":"Medium",
					"category":"impact"
				}
			],
			"title":"CVE-2026-42767"
		}
	]
}