Skip to content

Update OpenSSL to 3.0.21+ to address CVE-2026-7383, CVE-2026-45447, and CVE-2026-34182 #10426

Open
Open
Update OpenSSL to 3.0.21+ to address CVE-2026-7383, CVE-2026-45447, and CVE-2026-34182#10426
Labels
bugThis issue is a bug.needs-triageThis issue or PR still needs to be triaged.potential-regressionMarking this issue as a potential regression to be checked by team member
@ravikundem

Description

@ravikundem
ravikundem
opened on Jun 18, 2026

Describe the bug

Update OpenSSL to 3.0.21+ to address CVE-2026-7383, CVE-2026-45447, and CVE-2026-34182

Regression Issue

  • Select this option if this issue appears to be a regression.

Expected Behavior

Paths that are getting scanned
C:\Program Files\Amazon\AWSCLIV2\libssl-3.dll
C:\Program Files\Amazon\AWSCLIV2\libcrypto-3.dll

Current Behavior

AWS CLI contains a version of OpenSSL with the CVE (windows platform)

Reproduction Steps

N/A

Possible Solution

Update OpenSSL to 3.0.21+

Additional Information/Context

As the current AWS CLI versions 2.34.53 through the latest release (v2.35.8) bundle OpenSSL 3.0.20 for Windows, which is vulnerable to CVE-2026-7383, CVE-2026-45447, and CVE-2026-34182,

CLI version used

2.34.53

Environment details (OS name and version, etc.)

Windows

Metadata

Metadata

Assignees

No one assigned

    Labels

    bugThis issue is a bug.needs-triageThis issue or PR still needs to be triaged.potential-regressionMarking this issue as a potential regression to be checked by team member

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions