OpenSSL security advisories
3 threat alerts tracking vulnerabilities and security advisories that affect OpenSSL products.
Vulnios monitors OpenSSL CVE feeds, vendor advisories, CISA KEV listings, and exploit-prediction data continuously. Each alert below is enriched with severity, exploitation status, affected products, and a remediation path. Use this page to scan recent OpenSSL security news in one place, or click into an individual alert for full detail.
VU#862559: crypton-x509-validation Haskell libraries do not enforce X.509 NameConstraints
Overview A vulnerability has been discovered in the Haskell TLS software stack, commonly used by applications built in the Haskell programming language to securely connect to servers over the internet
criticalCVE-2026-9648USN-8414-2: OpenSSL vulnerabilities
USN-8414-1 fixed several vulnerabilities in OpenSSL. This update provides the corresponding update for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 20.04 LTS. Original advisory det
criticalCVE-2026-34180USN-8414-1: OpenSSL vulnerabilities
Frank Buss discovered that OpenSSL had a heap buffer over-read in ASN.1 content parsing. An attacker could possibly use this issue to cause OpenSSL to crash, resulting in a denial of service, or obtai
criticalCVE-2026-34180
Track OpenSSL exposure across your environment
Vulnios automatically cross-references your asset inventory against new OpenSSL CVEs and surfaces only what affects you. No more sifting manually — actionable findings only.
Start a free scan