SA-2026-007 - OpenSSL CMS AuthEnvelopedData Buffer Overflow (CVE-2025-15467)
Summary Parsing CMS AuthEnvelopedData message with maliciously crafted AEAD parameters can trigger a stack buffer overflow. A stack buffer overflow may lead to a crash, causing Denial of Service, or p...