MNBSD-2026-36: heap out-of-bounds write in BIO_f_linebuffer on short writes

Severity: Unknown

Affected Package: openssl

Summary: heap out-of-bounds write in BIO_f_linebuffer on short writes

Description

Writing large, newline-free data into a BIO chain using the line-buffering filter, where the next BIO performs short writes, can trigger a heap-based out-of-bounds write and memory corruption, typically resulting in a crash (Denial of Service). Severity: Low (OpenSSL).

Affected Versions

openssl

Recommendations

No specific recommendations provided.

References

Additional Information

Aliases: CVE-2025-68160

Published: June 11, 2026
Last Modified: June 11, 2026