Synopsis
The remote openSUSE host is missing one or more security updates.
Description
The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:21274-1 advisory.
Update to version 0.2.9+49.
Security issues fixed:
- CVE-2026-41676: openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1 (bsc#1270174).
- CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length (bsc#1270614).
- CVE-2026-41678: openssl: out-of-bounds write due to incorrect bounds assertion in `aes::unwrap_key()` (bsc#1270699).
- CVE-2026-41681: openssl: `MdCtxRef::digest_final()` writes past caller buffer with no length check (bsc#1270792).
- CVE-2026-41898: openssl: unchecked callback-returned length in PSK and cookie generate trampolines can leak adjacent memory to the network (bsc#1270842).
- CVE-2026-42327: openssl: undefined behavior in `X509Ref::ocsp_responders` for certificates with non- UTF-8 OCSP URLs (bsc#1270523).
- CVE-2026-44662: openssl: heap buffer overflow when encrypting with AES key-wrap-with-padding due to incorrectly sized output buffers (bsc#1270903).
- CVE-2026-45784: openssl: out-of-bounds write in `CipherCtxRef::cipher_update_inplace` for AES-KW-PAD ciphers due to incorrectly sized output buffer (bsc#1270999).
Other updates and bugfixes:
- Update openssl to 0.10.81.
- Make tss-esai-sys depend on bindgen 72.1 to support llvm > 21.
- Build with Clang <= 21 (bsc#1260596).
- Version 0.2.9+49:
* build(deps): bump uuid from 1.23.3 to 1.23.4
* build(deps): bump syn from 2.0.117 to 2.0.118
* build(deps): bump openssl from 0.10.80 to 0.10.81
* build(deps): bump rand from 0.9.4 to 0.10.1
* Added new regression test into packit-ci.yaml
* build(deps): bump actions/checkout from 6 to 7
* build(deps): bump uuid from 1.23.1 to 1.23.3
* build(deps): bump log from 0.4.29 to 0.4.32
* build(deps): bump http from 1.4.0 to 1.4.2
* build(deps): bump codecov/codecov-action from 6 to 7
* build(deps): bump retry-policies from 0.5.1 to 0.5.2
* fix: Remove unused base64::Engine import in context_info tests
* build(deps): bump reqwest-middleware from 0.5.1 to 0.5.2
* build(deps): bump serde_json from 1.0.149 to 1.0.150
* build(deps): bump openssl from 0.10.79 to 0.10.80
* agent: Hash agent ID before TPM2_Certify qualifying data
* cargo: Bump tss-esapi, picky-asn1-x509, and picky-asn1-der
* build(deps): bump openssl from 0.10.78 to 0.10.79
* build(deps): bump once_cell from 1.21.3 to 1.21.4
* build(deps): bump tempfile from 3.23.0 to 3.27.0
* push-model: cache UEFI event log bytes at startup
* build(deps): bump quote from 1.0.40 to 1.0.45
* build(deps): bump chrono from 0.4.42 to 0.4.44
* build(deps): bump openssl from 0.10.73 to 0.10.78
* build(deps): bump serde_json from 1.0.143 to 1.0.149
* build(deps): bump syn from 2.0.106 to 2.0.117
* build(deps): bump libc from 0.2.175 to 0.2.184
* build(deps): bump rand from 0.9.2 to 0.9.4
- Version 0.2.9+21:
* tests: use Express-style named params in Mockoon endpoints
* build(deps): bump pest_derive from 2.8.1 to 2.8.6
* build(deps): bump trybuild from 1.0.110 to 1.0.115
* build(deps): bump log from 0.4.28 to 0.4.29
* build(deps): bump uuid from 1.19.0 to 1.20.0
* build(deps): bump codecov/codecov-action from 5 to 6
* build(deps): bump tracing-subscriber from 0.3.20 to 0.3.23
* build(deps): bump cfg-if from 1.0.3 to 1.0.4
* build(deps): bump tokio from 1.49.0 to 1.50.0
* build(deps): bump actix-web from 4.12.1 to 4.13.0
* build(deps): bump anyhow from 1.0.99 to 1.0.102
* build(deps): bump clap from 4.5.57 to 4.5.60
* build(deps): bump tracing from 0.1.36 to 0.1.44
Tenable has extracted the preceding description block directly from the SUSE security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Update the affected keylime-ima-policy and / or rust-keylime packages.
Plugin Details
File Name: openSUSE-2026-21274-1.nasl
Agent: unix
Supported Sensors: Continuous Assessment, Nessus Agent, Nessus
Risk Information
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Threat Vector: CVSS:4.0/E:U
Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Vulnerability Information
CPE: p-cpe:/a:novell:opensuse:keylime-ima-policy, cpe:/o:novell:opensuse:16.0, p-cpe:/a:novell:opensuse:rust-keylime
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Exploit Ease: No known exploits are available
Patch Publication Date: 7/9/2026
Vulnerability Publication Date: 4/22/2026