MNBSD-2026-34: heap buffer overflow in hexadecimal conversion

Severity: Unknown

Affected Package: openssl

Summary: heap buffer overflow in hexadecimal conversion

Description

Converting an excessively large OCTET STRING value to a hexadecimal string leads to a heap buffer overflow on 32-bit platforms, which may lead to a crash or possibly attacker-controlled code execution. Severity: Low (OpenSSL).

Affected Versions

openssl

Recommendations

No specific recommendations provided.

References

Additional Information

Aliases: CVE-2026-31789

Published: June 11, 2026
Last Modified: June 11, 2026