VDB
JLSEC-2026-251
JLSEC-2026-251
PUBLISHED
CVSS 7.5 HIGH
Issue summary: Calling the OpenSSL API function SSL_free_buffers may cause memory to be accessed...
Risk Scores
CVSS v3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Julia | Openresty_jll | 1.19.9+0, 1.19.9+0 |
| Julia | OpenSSL_jll | 0, 0 |
Timeline
- Apr 27, 2026 CVE Published
- Apr 27, 2026 CVE Updated
References
- https://github.com/advisories/GHSA-6vgq-8qjq-h578 url
- https://github.com/openssl/openssl/commit/704f725b96aa373ee45ecfb23f6abfe8be8d9177 url
- https://github.com/openssl/openssl/commit/b3f0eb0a295f58f16ba43ba99dad70d4ee5c437d url
- https://github.com/openssl/openssl/commit/c88c3de51020c37e8706bf7a682a162593053aac url
- https://github.com/openssl/openssl/commit/e5093133c35ca82874ad83697af76f4b0f7e3bd8 url
- https://github.openssl.org/openssl/extended-releases/commit/f7a045f3143fc6da2ee66bf52d8df04829590dd4 url
- https://lists.debian.org/debian-lts-announce/2024/10/msg00033.html url
- https://lists.debian.org/debian-lts-announce/2024/11/msg00000.html url
- https://nvd.nist.gov/vuln/detail/CVE-2024-4741 url
- https://security.netapp.com/advisory/ntap-20240621-0004 url
- https://security.netapp.com/advisory/ntap-20240621-0004/ url
- https://www.openssl.org/news/secadv/20240528.txt url