openSUSE 16 Security Update : rust-keylime (openSUSE-SU-2026:21274-1)

critical Nessus Plugin ID 326416

Synopsis

The remote openSUSE host is missing one or more security updates.

Description

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:21274-1 advisory.

Update to version 0.2.9+49.

Security issues fixed:

- CVE-2026-41676: openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1 (bsc#1270174).
- CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length (bsc#1270614).
- CVE-2026-41678: openssl: out-of-bounds write due to incorrect bounds assertion in `aes::unwrap_key()` (bsc#1270699).
- CVE-2026-41681: openssl: `MdCtxRef::digest_final()` writes past caller buffer with no length check (bsc#1270792).
- CVE-2026-41898: openssl: unchecked callback-returned length in PSK and cookie generate trampolines can leak adjacent memory to the network (bsc#1270842).
- CVE-2026-42327: openssl: undefined behavior in `X509Ref::ocsp_responders` for certificates with non- UTF-8 OCSP URLs (bsc#1270523).
- CVE-2026-44662: openssl: heap buffer overflow when encrypting with AES key-wrap-with-padding due to incorrectly sized output buffers (bsc#1270903).
- CVE-2026-45784: openssl: out-of-bounds write in `CipherCtxRef::cipher_update_inplace` for AES-KW-PAD ciphers due to incorrectly sized output buffer (bsc#1270999).

Other updates and bugfixes:

- Update openssl to 0.10.81.
- Make tss-esai-sys depend on bindgen 72.1 to support llvm > 21.
- Build with Clang <= 21 (bsc#1260596).
- Version 0.2.9+49:
* build(deps): bump uuid from 1.23.3 to 1.23.4
* build(deps): bump syn from 2.0.117 to 2.0.118
* build(deps): bump openssl from 0.10.80 to 0.10.81
* build(deps): bump rand from 0.9.4 to 0.10.1
* Added new regression test into packit-ci.yaml
* build(deps): bump actions/checkout from 6 to 7
* build(deps): bump uuid from 1.23.1 to 1.23.3
* build(deps): bump log from 0.4.29 to 0.4.32
* build(deps): bump http from 1.4.0 to 1.4.2
* build(deps): bump codecov/codecov-action from 6 to 7
* build(deps): bump retry-policies from 0.5.1 to 0.5.2
* fix: Remove unused base64::Engine import in context_info tests
* build(deps): bump reqwest-middleware from 0.5.1 to 0.5.2
* build(deps): bump serde_json from 1.0.149 to 1.0.150
* build(deps): bump openssl from 0.10.79 to 0.10.80
* agent: Hash agent ID before TPM2_Certify qualifying data
* cargo: Bump tss-esapi, picky-asn1-x509, and picky-asn1-der
* build(deps): bump openssl from 0.10.78 to 0.10.79
* build(deps): bump once_cell from 1.21.3 to 1.21.4
* build(deps): bump tempfile from 3.23.0 to 3.27.0
* push-model: cache UEFI event log bytes at startup
* build(deps): bump quote from 1.0.40 to 1.0.45
* build(deps): bump chrono from 0.4.42 to 0.4.44
* build(deps): bump openssl from 0.10.73 to 0.10.78
* build(deps): bump serde_json from 1.0.143 to 1.0.149
* build(deps): bump syn from 2.0.106 to 2.0.117
* build(deps): bump libc from 0.2.175 to 0.2.184
* build(deps): bump rand from 0.9.2 to 0.9.4
- Version 0.2.9+21:
* tests: use Express-style named params in Mockoon endpoints
* build(deps): bump pest_derive from 2.8.1 to 2.8.6
* build(deps): bump trybuild from 1.0.110 to 1.0.115
* build(deps): bump log from 0.4.28 to 0.4.29
* build(deps): bump uuid from 1.19.0 to 1.20.0
* build(deps): bump codecov/codecov-action from 5 to 6
* build(deps): bump tracing-subscriber from 0.3.20 to 0.3.23
* build(deps): bump cfg-if from 1.0.3 to 1.0.4
* build(deps): bump tokio from 1.49.0 to 1.50.0
* build(deps): bump actix-web from 4.12.1 to 4.13.0
* build(deps): bump anyhow from 1.0.99 to 1.0.102
* build(deps): bump clap from 4.5.57 to 4.5.60
* build(deps): bump tracing from 0.1.36 to 0.1.44

Tenable has extracted the preceding description block directly from the SUSE security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Update the affected keylime-ima-policy and / or rust-keylime packages.

See Also

https://bugzilla.suse.com/1260596

https://bugzilla.suse.com/1270174

https://bugzilla.suse.com/1270523

https://bugzilla.suse.com/1270614

https://bugzilla.suse.com/1270699

https://bugzilla.suse.com/1270792

https://bugzilla.suse.com/1270842

https://bugzilla.suse.com/1270903

https://bugzilla.suse.com/1270999

https://www.suse.com/security/cve/CVE-2026-41676

https://www.suse.com/security/cve/CVE-2026-41677

https://www.suse.com/security/cve/CVE-2026-41678

https://www.suse.com/security/cve/CVE-2026-41681

https://www.suse.com/security/cve/CVE-2026-41898

https://www.suse.com/security/cve/CVE-2026-42327

https://www.suse.com/security/cve/CVE-2026-44662

https://www.suse.com/security/cve/CVE-2026-45784

Plugin Details

Severity: Critical

ID: 326416

File Name: openSUSE-2026-21274-1.nasl

Version: 1.1

Type: Local

Agent: unix

Published: 7/12/2026

Updated: 7/12/2026

Supported Sensors: Continuous Assessment, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.9

Percentile: 96.92

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2026-41898

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 8.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

CVSS v4

Risk Factor: Critical

Base Score: 9.3

Threat Score: 8.1

Threat Vector: CVSS:4.0/E:U

Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

CVSS Score Source: CVE-2026-41681

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:keylime-ima-policy, cpe:/o:novell:opensuse:16.0, p-cpe:/a:novell:opensuse:rust-keylime

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Exploit Ease: No known exploits are available

Patch Publication Date: 7/9/2026

Vulnerability Publication Date: 4/22/2026

Reference Information

CVE: CVE-2026-41676, CVE-2026-41677, CVE-2026-41678, CVE-2026-41681, CVE-2026-41898, CVE-2026-42327, CVE-2026-44662, CVE-2026-45784