MNBSD-2026-37: unauthenticated/unencrypted trailing bytes with low-level OCB function calls

Severity: Unknown

Affected Package: openssl

Summary: unauthenticated/unencrypted trailing bytes with low-level OCB function calls

Description

When using the low-level OCB API directly with AES-NI or other hardware-accelerated code paths, inputs whose length is not a multiple of 16 bytes can leave the final partial block unencrypted and unauthenticated, exposing the trailing 1-15 bytes in cleartext and outside the authentication tag. Severity: Low (OpenSSL).

Affected Versions

openssl

Recommendations

No specific recommendations provided.

References

Additional Information

Aliases: CVE-2025-69418

Published: June 11, 2026
Last Modified: June 11, 2026