Skip to content

High CVEs in OpenSSL 1.1.1zf which is in the ARM distributions of CLI v2 #10221

Open
Open
High CVEs in OpenSSL 1.1.1zf which is in the ARM distributions of CLI v2#10221
Labels
bugThis issue is a bug.needs-triageThis issue or PR still needs to be triaged.
@alex-rowe

Description

@alex-rowe
alex-rowe
opened on Apr 13, 2026

Describe the bug

Tenable scanner has detected OpenSSL 1.1.1zf running which is triggering this plugin https://www.tenable.com/plugins/nessus/305204 with these CVEs

Regression Issue

  • Select this option if this issue appears to be a regression.

Expected Behavior

OpenSSL 1.1.1zg is used in the ARM distribution

Current Behavior

# curl "https://awscli.amazonaws.com/awscli-exe-linux-aarch64.zip" -o "awscliv2.zip"
# unzip awscliv2.zip   
# grep -ao "OpenSSL 1\.[0-9.]\+[a-z]*"  aws/dist/libssl.so.1.1 
OpenSSL 1.1.1zf

Reproduction Steps

# curl "https://awscli.amazonaws.com/awscli-exe-linux-aarch64.zip" -o "awscliv2.zip"
# unzip awscliv2.zip   
# grep -ao "OpenSSL 1\.[0-9.]\+[a-z]*"  aws/dist/libssl.so.1.1 
OpenSSL 1.1.1zf

Possible Solution

No response

Additional Information/Context

No response

CLI version used

2.34.30

Environment details (OS name and version, etc.)

ARM Linux installer

Metadata

Metadata

Assignees

No one assigned

    Labels

    bugThis issue is a bug.needs-triageThis issue or PR still needs to be triaged.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions