{"id":"CVE-2026-22796","details":"Issue summary: A type confusion vulnerability exists in the signature\nverification of signed PKCS#7 data where an ASN1_TYPE union member is\naccessed without first validating the type, causing an invalid or NULL\npointer dereference when processing malformed PKCS#7 data.\n\nImpact summary: An application performing signature verification of PKCS#7\ndata or calling directly the PKCS7_digest_from_attributes() function can be\ncaused to dereference an invalid or NULL pointer when reading, resulting in\na Denial of Service.\n\nThe function PKCS7_digest_from_attributes() accesses the message digest attribute\nvalue without validating its type. When the type is not V_ASN1_OCTET_STRING,\nthis results in accessing invalid memory through the ASN1_TYPE union, causing\na crash.\n\nExploiting this vulnerability requires an attacker to provide a malformed\nsigned PKCS#7 to an application that verifies it. The impact of the\nexploit is just a Denial of Service, the PKCS7 API is legacy and applications\nshould be using the CMS API instead. For these reasons the issue was\nassessed as Low severity.\n\nThe FIPS modules in 3.5, 3.4, 3.3 and 3.0 are not affected by this issue,\nas the PKCS#7 parsing implementation is outside the OpenSSL FIPS module\nboundary.\n\nOpenSSL 3.6, 3.5, 3.4, 3.3, 3.0, 1.1.1 and 1.0.2 are vulnerable to this issue.","aliases":["ECHO-f3f1-7685-1435"],"modified":"2026-04-14T18:48:31.426312708Z","published":"2026-01-27T16:16:35.543Z","related":["ALSA-2026:1472","ALSA-2026:1473","CGA-9vjv-2q8r-rw73","MGASA-2026-0029","SUSE-SU-2026:0309-1","SUSE-SU-2026:0310-1","SUSE-SU-2026:0311-1","SUSE-SU-2026:0312-1","SUSE-SU-2026:0331-1","SUSE-SU-2026:0332-1","SUSE-SU-2026:0333-1","SUSE-SU-2026:0343-1","SUSE-SU-2026:0346-1","SUSE-SU-2026:0358-1","SUSE-SU-2026:0359-1","SUSE-SU-2026:0360-1","SUSE-SU-2026:0498-1","SUSE-SU-2026:20211-1","SUSE-SU-2026:20223-1","SUSE-SU-2026:20349-1","SUSE-SU-2026:20373-1","openSUSE-SU-2026:20152-1"],"references":[{"type":"ADVISORY","url":"https://openssl-library.org/news/secadv/20260127.txt"},{"type":"FIX","url":"https://github.com/openssl/openssl/commit/2502e7b7d4c0cf4f972a881641fe09edc67aeec4"},{"type":"FIX","url":"https://github.com/openssl/openssl/commit/572844beca95068394c916626a6d3a490f831a49"},{"type":"FIX","url":"https://github.com/openssl/openssl/commit/7bbca05be55b129651d9df4bdb92becc45002c12"},{"type":"FIX","url":"https://github.com/openssl/openssl/commit/eeee3cbd4d682095ed431052f00403004596373e"},{"type":"FIX","url":"https://github.com/openssl/openssl/commit/ef2fb66ec571564d64d1c74a12e388a2a54d05d2"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/openssl/openssl","events":[{"introduced":"e818b74be2170fbe957a07b0da4401c2b694b3b8"},{"fixed":"e818b74be2170fbe957a07b0da4401c2b694b3b8"},{"introduced":"e04bd3433fd84e1861bf258ea37928d9845e6a86"},{"fixed":"e04bd3433fd84e1861bf258ea37928d9845e6a86"},{"introduced":"89cd17a031e022211684eb7eb41190cf1910f9fa"},{"fixed":"a22063cd69a077cc68bb4c10e9f351f75899b194"},{"introduced":"4cb31128b5790819dfeea2739fbde265f71a10a2"},{"fixed":"4601ff25acd6c2fe58a8bfe241e6c470e27b8074"},{"introduced":"98acb6b02839c609ef5b837794e08d906d965335"},{"fixed":"565bdcc41bbf89fcbaf962636469332689f0c9fd"},{"introduced":"636dfadc70ce26f2473870570bfd9ec352806b1d"},{"fixed":"67b5686b4419b4cb8caa502711c41815f5279751"},{"introduced":"7b371d80d959ec9ab4139d09d78e83c090de9779"},{"fixed":"c9a9e5b10105ad850b6e4d1122c645c67767c341"},{"fixed":"2502e7b7d4c0cf4f972a881641fe09edc67aeec4"},{"fixed":"572844beca95068394c916626a6d3a490f831a49"},{"fixed":"7bbca05be55b129651d9df4bdb92becc45002c12"},{"fixed":"eeee3cbd4d682095ed431052f00403004596373e"},{"fixed":"ef2fb66ec571564d64d1c74a12e388a2a54d05d2"}],"database_specific":{"versions":[{"introduced":"1.0.2"},{"fixed":"1.0.2zn"},{"introduced":"1.1.1"},{"fixed":"1.1.1ze"},{"introduced":"3.0.0"},{"fixed":"3.0.19"},{"introduced":"3.3.0"},{"fixed":"3.3.6"},{"introduced":"3.4.0"},{"fixed":"3.4.4"},{"introduced":"3.5.0"},{"fixed":"3.5.5"},{"introduced":"3.6.0"},{"fixed":"3.6.1"}]}}],"versions":["3.0-POST-CLANG-FORMAT-WEBKIT","3.0-PRE-CLANG-FORMAT-WEBKIT","3.3-POST-CLANG-FORMAT-WEBKIT","3.3-PRE-CLANG-FORMAT-WEBKIT","3.4-POST-CLANG-FORMAT-WEBKIT","3.4-PRE-CLANG-FORMAT-WEBKIT","3.5-POST-CLANG-FORMAT-WEBKIT","3.5-PRE-CLANG-FORMAT-WEBKIT","3.6-POST-CLANG-FORMAT-WEBKIT","3.6-PRE-CLANG-FORMAT-WEBKIT","openssl-3.0.0","openssl-3.0.1","openssl-3.0.10","openssl-3.0.11","openssl-3.0.12","openssl-3.0.13","openssl-3.0.14","openssl-3.0.15","openssl-3.0.16","openssl-3.0.17","openssl-3.0.18","openssl-3.0.2","openssl-3.0.3","openssl-3.0.4","openssl-3.0.5","openssl-3.0.6","openssl-3.0.7","openssl-3.0.8","openssl-3.0.9","openssl-3.3.0","openssl-3.3.1","openssl-3.3.2","openssl-3.3.3","openssl-3.3.4","openssl-3.3.5","openssl-3.4.0","openssl-3.4.1","openssl-3.4.2","openssl-3.4.3","openssl-3.5.0","openssl-3.5.1","openssl-3.5.2","openssl-3.5.3","openssl-3.5.4","openssl-3.6.0"],"database_specific":{"vanir_signatures_modified":"2026-04-11T03:29:07Z","source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-22796.json","vanir_signatures":[{"digest":{"threshold":0.9,"line_hashes":["71476756686855470599937379985047700091","166895001063044813957862891151407698928","278712318572386455087903167506773264569","62751701112678304274354497278072631412","305528711857785099232457614306160091925"]},"source":"https://github.com/openssl/openssl/commit/7bbca05be55b129651d9df4bdb92becc45002c12","signature_type":"Line","id":"CVE-2026-22796-09b46f75","deprecated":false,"target":{"file":"apps/s_client.c"},"signature_version":"v1"},{"signature_type":"Function","source":"https://github.com/openssl/openssl/commit/ef2fb66ec571564d64d1c74a12e388a2a54d05d2","digest":{"length":48739,"function_hash":"199855863195958881625652055964543723547"},"id":"CVE-2026-22796-0b6c52aa","deprecated":false,"target":{"function":"s_client_main","file":"apps/s_client.c"},"signature_version":"v1"},{"digest":{"length":46133,"function_hash":"89525939813841793658939652477796738403"},"source":"https://github.com/openssl/openssl/commit/572844beca95068394c916626a6d3a490f831a49","signature_type":"Function","id":"CVE-2026-22796-135694a1","deprecated":false,"target":{"function":"s_client_main","file":"apps/s_client.c"},"signature_version":"v1"},{"signature_type":"Line","source":"https://github.com/openssl/openssl/commit/572844beca95068394c916626a6d3a490f831a49","digest":{"threshold":0.9,"line_hashes":["60877912797987591188065755797983277280","251788162060282103686621368991676932733","40400787577453108895692359634937979252","331144855365863902029291104116453962179","88149325502830834177707272741538263698","104081780024832426122495621692374432985","320309570822310705485919480150939913446"]},"id":"CVE-2026-22796-1be6bf98","deprecated":false,"target":{"file":"crypto/pkcs12/p12_kiss.c"},"signature_version":"v1"},{"signature_type":"Line","source":"https://github.com/openssl/openssl/commit/7bbca05be55b129651d9df4bdb92becc45002c12","digest":{"threshold":0.9,"line_hashes":["60877912797987591188065755797983277280","251788162060282103686621368991676932733","40400787577453108895692359634937979252","331144855365863902029291104116453962179","88149325502830834177707272741538263698","104081780024832426122495621692374432985","320309570822310705485919480150939913446"]},"id":"CVE-2026-22796-23f9a2c6","target":{"file":"crypto/pkcs12/p12_kiss.c"},"deprecated":false,"signature_version":"v1"},{"signature_type":"Line","source":"https://github.com/openssl/openssl/commit/eeee3cbd4d682095ed431052f00403004596373e","digest":{"threshold":0.9,"line_hashes":["60877912797987591188065755797983277280","251788162060282103686621368991676932733","40400787577453108895692359634937979252","331144855365863902029291104116453962179","88149325502830834177707272741538263698","104081780024832426122495621692374432985","320309570822310705485919480150939913446"]},"id":"CVE-2026-22796-276a6f9a","deprecated":false,"target":{"file":"crypto/pkcs12/p12_kiss.c"},"signature_version":"v1"},{"signature_type":"Function","source":"https://github.com/openssl/openssl/commit/2502e7b7d4c0cf4f972a881641fe09edc67aeec4","digest":{"length":48972,"function_hash":"137663506870388774154075225648218501066"},"id":"CVE-2026-22796-30c3a1ca","target":{"function":"s_client_main","file":"apps/s_client.c"},"deprecated":false,"signature_version":"v1"},{"signature_type":"Line","source":"https://github.com/openssl/openssl/commit/ef2fb66ec571564d64d1c74a12e388a2a54d05d2","digest":{"threshold":0.9,"line_hashes":["60877912797987591188065755797983277280","251788162060282103686621368991676932733","40400787577453108895692359634937979252","331144855365863902029291104116453962179","88149325502830834177707272741538263698","104081780024832426122495621692374432985","320309570822310705485919480150939913446"]},"id":"CVE-2026-22796-3311f579","deprecated":false,"target":{"file":"crypto/pkcs12/p12_kiss.c"},"signature_version":"v1"},{"digest":{"threshold":0.9,"line_hashes":["71476756686855470599937379985047700091","166895001063044813957862891151407698928","278712318572386455087903167506773264569","62751701112678304274354497278072631412","305528711857785099232457614306160091925"]},"source":"https://github.com/openssl/openssl/commit/eeee3cbd4d682095ed431052f00403004596373e","signature_type":"Line","id":"CVE-2026-22796-3ae22c42","deprecated":false,"target":{"file":"apps/s_client.c"},"signature_version":"v1"},{"signature_type":"Line","source":"https://github.com/openssl/openssl/commit/2502e7b7d4c0cf4f972a881641fe09edc67aeec4","digest":{"threshold":0.9,"line_hashes":["71476756686855470599937379985047700091","166895001063044813957862891151407698928","278712318572386455087903167506773264569","62751701112678304274354497278072631412","305528711857785099232457614306160091925"]},"id":"CVE-2026-22796-564c849c","deprecated":false,"target":{"file":"apps/s_client.c"},"signature_version":"v1"},{"digest":{"length":48972,"function_hash":"137663506870388774154075225648218501066"},"source":"https://github.com/openssl/openssl/commit/7bbca05be55b129651d9df4bdb92becc45002c12","signature_type":"Function","id":"CVE-2026-22796-5e98e146","deprecated":false,"target":{"function":"s_client_main","file":"apps/s_client.c"},"signature_version":"v1"},{"signature_type":"Line","source":"https://github.com/openssl/openssl/commit/eeee3cbd4d682095ed431052f00403004596373e","digest":{"threshold":0.9,"line_hashes":["246451924573170111765630526962404097757","196617962610438348365718973266564583117","284857352021339567897482824767365180593","273428943801490059425881941273658322840"]},"id":"CVE-2026-22796-68a85aee","deprecated":false,"target":{"file":"crypto/pkcs7/pk7_doit.c"},"signature_version":"v1"},{"signature_type":"Line","source":"https://github.com/openssl/openssl/commit/2502e7b7d4c0cf4f972a881641fe09edc67aeec4","digest":{"threshold":0.9,"line_hashes":["60877912797987591188065755797983277280","251788162060282103686621368991676932733","40400787577453108895692359634937979252","331144855365863902029291104116453962179","88149325502830834177707272741538263698","104081780024832426122495621692374432985","320309570822310705485919480150939913446"]},"id":"CVE-2026-22796-86099db0","deprecated":false,"target":{"file":"crypto/pkcs12/p12_kiss.c"},"signature_version":"v1"},{"signature_type":"Line","source":"https://github.com/openssl/openssl/commit/572844beca95068394c916626a6d3a490f831a49","digest":{"threshold":0.9,"line_hashes":["71476756686855470599937379985047700091","166895001063044813957862891151407698928","278712318572386455087903167506773264569","62751701112678304274354497278072631412","305528711857785099232457614306160091925"]},"id":"CVE-2026-22796-8f8ff17b","deprecated":false,"target":{"file":"apps/s_client.c"},"signature_version":"v1"},{"signature_type":"Line","source":"https://github.com/openssl/openssl/commit/ef2fb66ec571564d64d1c74a12e388a2a54d05d2","digest":{"threshold":0.9,"line_hashes":["71476756686855470599937379985047700091","166895001063044813957862891151407698928","278712318572386455087903167506773264569","62751701112678304274354497278072631412","305528711857785099232457614306160091925"]},"id":"CVE-2026-22796-991d33fa","deprecated":false,"target":{"file":"apps/s_client.c"},"signature_version":"v1"},{"signature_type":"Line","source":"https://github.com/openssl/openssl/commit/7bbca05be55b129651d9df4bdb92becc45002c12","digest":{"threshold":0.9,"line_hashes":["246451924573170111765630526962404097757","196617962610438348365718973266564583117","284857352021339567897482824767365180593","273428943801490059425881941273658322840"]},"id":"CVE-2026-22796-af52563c","target":{"file":"crypto/pkcs7/pk7_doit.c"},"deprecated":false,"signature_version":"v1"},{"signature_type":"Line","source":"https://github.com/openssl/openssl/commit/e04bd3433fd84e1861bf258ea37928d9845e6a86","digest":{"threshold":0.9,"line_hashes":["28170854778703993674264004058177114599","73132526844288570625317440636111911761","177405411499435185068645597737938634778","224809958623850711330610094965797758930","295554444428855106393106961197201359586"]},"id":"CVE-2026-22796-c377fa22","target":{"file":"include/openssl/opensslv.h"},"deprecated":false,"signature_version":"v1"},{"signature_type":"Line","source":"https://github.com/openssl/openssl/commit/572844beca95068394c916626a6d3a490f831a49","digest":{"threshold":0.9,"line_hashes":["246451924573170111765630526962404097757","196617962610438348365718973266564583117","284857352021339567897482824767365180593","273428943801490059425881941273658322840"]},"id":"CVE-2026-22796-d52a9a4d","deprecated":false,"target":{"file":"crypto/pkcs7/pk7_doit.c"},"signature_version":"v1"},{"digest":{"threshold":0.9,"line_hashes":["246451924573170111765630526962404097757","196617962610438348365718973266564583117","284857352021339567897482824767365180593","273428943801490059425881941273658322840"]},"source":"https://github.com/openssl/openssl/commit/2502e7b7d4c0cf4f972a881641fe09edc67aeec4","signature_type":"Line","id":"CVE-2026-22796-d6153be7","deprecated":false,"target":{"file":"crypto/pkcs7/pk7_doit.c"},"signature_version":"v1"},{"signature_type":"Line","source":"https://github.com/openssl/openssl/commit/e818b74be2170fbe957a07b0da4401c2b694b3b8","digest":{"threshold":0.9,"line_hashes":["251633914150035957322733061977107206211","338514574181828579838011565939158652696","76638288692106140328510055542557597351","142922657400765574308962710386922248045","71649992455794854055653842592139575350","65527166711110472566013424527579064967","253196866009476977787139000804413898733","172177136897997206866313011107384691461"]},"id":"CVE-2026-22796-e051451f","target":{"file":"crypto/opensslv.h"},"deprecated":false,"signature_version":"v1"},{"digest":{"threshold":0.9,"line_hashes":["246451924573170111765630526962404097757","196617962610438348365718973266564583117","284857352021339567897482824767365180593","273428943801490059425881941273658322840"]},"source":"https://github.com/openssl/openssl/commit/ef2fb66ec571564d64d1c74a12e388a2a54d05d2","signature_type":"Line","id":"CVE-2026-22796-f144311b","deprecated":false,"target":{"file":"crypto/pkcs7/pk7_doit.c"},"signature_version":"v1"},{"digest":{"length":48969,"function_hash":"127898544240712534256163966369522564864"},"source":"https://github.com/openssl/openssl/commit/eeee3cbd4d682095ed431052f00403004596373e","signature_type":"Function","id":"CVE-2026-22796-fbed4a44","deprecated":false,"target":{"function":"s_client_main","file":"apps/s_client.c"},"signature_version":"v1"}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}]}