DirectorySecurity AdvisoriesPricing
Sign in
Security Advisories

CGA-hfx2-pp3g-j9fc

Package

openssl-provider-fips-3.6.0

Component

openssl-provider-fips-3.6.0

Latest update

Not affected

Aliases

  • CVE-2025-15469
  • GHSA-v2vr-926q-29fr

Severity

5.5

Medium

CVSS V3

Eliminate CVEs with Chainguard hardened images

Build, ship, and run secure software with minimal, hardened container images — rebuilt from source daily and guarded under our industry-leading remediation SLA.

Start for free

References

  • https://nvd.nist.gov/vuln/detail/CVE-2025-15469

Updates

Status

Not affected

Justification

Vulnerable code not present

Impact

The OpenSSL FIPS providers are not affected by this issue. https://openssl-library.org/news/secadv/20250522.txt

Status

Fixed

Fixed version

3.6.0-r2

Status

Under investigation


The trusted source for open source

Talk to an expert
PrivacyTerms

Product

Chainguard ContainersChainguard LibrariesChainguard VMsChainguard OS PackagesChainguard ActionsChainguard Agent SkillsIntegrationsPricing
© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.