{
  "metadata": {
    "@context": "https://openvex.dev/ns/v0.2.0",
    "@id": "https://packages.broadcom.com/photon/photon_cve_metadata/cve/2026/CVE-2026-42771",
    "author": "VMware Photon OS",
    "timestamp": "2026-06-20T05:34:28.612959",
    "version": 1
  },
  "statements": [
    {
      "vulnerability": {
        "@id": "https://nvd.nist.gov/vuln/detail/CVE-2026-42771",
        "name": "CVE-2026-42771"
      },
      "products": [
        {
          "@id": "pkg:rpm/photon/openssl?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/openssl?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/openssl-devel?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/openssl-devel?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/openssl-perl?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/openssl-perl?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/openssl-c_rehash?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/openssl-c_rehash?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/openssl-docs?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/openssl-docs?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/openssl-libs?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/openssl-libs?arch=aarch64"
        }
      ],
      "status": "not_affected",
      "status_notes": "The vulnerable validate_email_name() / validate_hostname_part() functions were introduced as part of an OpenSSL 4.0 email-validation rewrite. They are absent from 3.0.21 x509_vpm.c source file."
    }
  ]
}