-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 24 Jan 2026 16:01:59 +0100
Source: openssl
Binary: libcrypto3-udeb libssl-dev libssl3 libssl3-dbgsym libssl3-udeb openssl openssl-dbgsym
Architecture: i386
Version: 3.0.18-1~deb12u2
Distribution: bookworm-security
Urgency: medium
Maintainer: amd64 / i386 Build Daemon (x86-ubc-02) <buildd_amd64-x86-ubc-02@buildd.debian.org>
Changed-By: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
Description:
 libcrypto3-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl3    - Secure Sockets Layer toolkit - shared libraries
 libssl3-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (3.0.18-1~deb12u2) bookworm-security; urgency=medium
 .
   * CVE-2025-15467 (Stack buffer overflow in CMS AuthEnvelopedData parsing)
   * CVE-2025-68160 (Heap out-of-bounds write in BIO_f_linebuffer on short
     writes)
   * CVE-2025-69418 (Unauthenticated/unencrypted trailing bytes with low-level
     OCB function calls)
   * CVE-2025-69419 (Out of bounds write in PKCS12_get_friendlyname() UTF-8
     conversion)
   * CVE-2025-69420 (Missing ASN1_TYPE validation in TS_RESP_verify_response()
     function)
   * CVE-2025-69421 (NULL Pointer Dereference in PKCS12_item_decrypt_d2i_ex
     function)
   * CVE-2026-22795 (Missing ASN1_TYPE validation in PKCS#12 parsing)
   * CVE-2026-22796 (ASN1_TYPE Type Confusion in the
     PKCS7_digest_from_attributes() function)
Checksums-Sha1:
 7f89b7ac96c11c87c06307260af3ac194ff7b346 1513456 libcrypto3-udeb_3.0.18-1~deb12u2_i386.udeb
 81160dcc4bd75bf307404f5b7cbc3e66e333b9e9 2504536 libssl-dev_3.0.18-1~deb12u2_i386.deb
 d78dd26e28e3498450ad5402fae3abb1bea1dd6f 3681048 libssl3-dbgsym_3.0.18-1~deb12u2_i386.deb
 fdc2f4c427d43290eb76e6aa0152db23191ad291 239004 libssl3-udeb_3.0.18-1~deb12u2_i386.udeb
 ce23abb4e1fa3ce88b1492ccc939ab550f16ef8d 2034712 libssl3_3.0.18-1~deb12u2_i386.deb
 3267ca82a3df1a7866f8fee21f983afca48b6dee 598832 openssl-dbgsym_3.0.18-1~deb12u2_i386.deb
 8eb4336cb1ffb699b8c67d4394ca7d5c16be097d 7727 openssl_3.0.18-1~deb12u2_i386-buildd.buildinfo
 991aa7a1e7cb3fbee7cd0b96f7438acb06071e88 1437008 openssl_3.0.18-1~deb12u2_i386.deb
Checksums-Sha256:
 4d3e1ea2fbfe955134be6cf51f36477be72b29dfa51e91be734e9772b4363ee0 1513456 libcrypto3-udeb_3.0.18-1~deb12u2_i386.udeb
 0712d94601c2a715f35a513ad948e44e43450b9d7f3d2b451cc5ef6ed6e7041d 2504536 libssl-dev_3.0.18-1~deb12u2_i386.deb
 e90f0e0c783e9376c4cf1cc37f5741242689f41a57a7e58ca339f7f2e06ca5b7 3681048 libssl3-dbgsym_3.0.18-1~deb12u2_i386.deb
 a1d10a62119f061c6a6601ea650621ab631fbbd5abd5d0fb258b6980742c8b20 239004 libssl3-udeb_3.0.18-1~deb12u2_i386.udeb
 9d7c2a2aaeef6f469cf2323c3eed67a83dc7d6ab566642ca265be27bb1318254 2034712 libssl3_3.0.18-1~deb12u2_i386.deb
 a640ad5c5a889889a12d2435529ce54db3266862dd7757dbcf98d03582f8f5d2 598832 openssl-dbgsym_3.0.18-1~deb12u2_i386.deb
 97b6c7e6376c64cc80095dd593c5b1db6988636b6b9b6d7f16491342f75420b3 7727 openssl_3.0.18-1~deb12u2_i386-buildd.buildinfo
 289cf2a1f85c77561946d9b220f9129f0327bf3ed5beb52544dcec1521d18fed 1437008 openssl_3.0.18-1~deb12u2_i386.deb
Files:
 cf374bd1d14c34b78bb223d6c32690be 1513456 debian-installer optional libcrypto3-udeb_3.0.18-1~deb12u2_i386.udeb
 35605673456cc3df79840d6089584643 2504536 libdevel optional libssl-dev_3.0.18-1~deb12u2_i386.deb
 350b23a573b2f3a3c4cd5b1247c5a6bc 3681048 debug optional libssl3-dbgsym_3.0.18-1~deb12u2_i386.deb
 99a07aef3915838ddece326010e92e95 239004 debian-installer optional libssl3-udeb_3.0.18-1~deb12u2_i386.udeb
 3dbd2885ca50e2e39e4a59071d037a68 2034712 libs optional libssl3_3.0.18-1~deb12u2_i386.deb
 ebddb7d1f675b6a2b75f6234cbbfb51c 598832 debug optional openssl-dbgsym_3.0.18-1~deb12u2_i386.deb
 057bac9e266740251d1ee63586b2931b 7727 utils optional openssl_3.0.18-1~deb12u2_i386-buildd.buildinfo
 65d05948663c2c12085aa389fdca8ded 1437008 utils optional openssl_3.0.18-1~deb12u2_i386.deb

-----BEGIN PGP SIGNATURE-----
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=WXCY
-----END PGP SIGNATURE-----