OpenSSL 3.6.1 is here to address several critical security vulnerabilities, including CVE-2025-11187, causing improper validation of PBMAC1 parameters in PKCS#12 MAC verification, CVE-2025-15467, a NULL dereference in the SSL_CIPHER_find() function on unknown cipher ID, and CVE-2025-15469, causing openssl dgst one-shot codepath to silently truncate inputs bigger than 16 MB.

The post OpenSSL 3.6.1 Is Now Available with Important Security Patches and Bug Fixes appeared first on Linux Today.