-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 06 Jun 2026 21:56:20 +0200
Source: openssl
Binary: libcrypto3-udeb libssl-dev libssl3 libssl3-dbgsym libssl3-udeb openssl openssl-dbgsym
Architecture: armel
Version: 3.0.20-1~deb12u2
Distribution: bookworm-security
Urgency: medium
Maintainer: armel Build Daemon (arm-conova-03) <buildd_arm64-arm-conova-03@buildd.debian.org>
Changed-By: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
Description:
 libcrypto3-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl3    - Secure Sockets Layer toolkit - shared libraries
 libssl3-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (3.0.20-1~deb12u2) bookworm-security; urgency=medium
 .
   * CVE-2026-7383 ("Possible Heap Buffer Overflow in ASN.1 Multibyte String
     Conversion")
   * CVE-2026-9076 ("Out-of-Bounds Read in CMS Password-Based Decryption")
   * CVE-2026-34180 ("Heap Buffer Over-read in ASN.1 Content Parsing")
   * CVE-2026-34182 ("CMS AuthEnvelopedData Processing May Accept Forged
     Messages")
   * CVE-2026-42766 ("Possible NULL Dereference in Password-Based CMS
     Decryption")
   * CVE-2026-42770 ("FFC-DH Peer Validation Uses Attacker-Supplied q")
   * CVE-2026-45445 ("AES-OCB IV Ignored on EVP_Cipher() Path")
   * CVE-2026-45446 ("Incorrect Tag Processing for Empty Messages in
     AES-GCM-SIV and AES-SIV modes")
   * CVE-2026-45447 ("Heap Use-After-Free in OpenSSL PKCS7_verify()")
Checksums-Sha1:
 215d65ea9206127a37b9c1dd5b148d7af4c617cc 1180876 libcrypto3-udeb_3.0.20-1~deb12u2_armel.udeb
 1d1c1de1c788121e5301661002510861c88b7cd2 2117072 libssl-dev_3.0.20-1~deb12u2_armel.deb
 36de900631e86cd664a565a669ff741281072689 4381980 libssl3-dbgsym_3.0.20-1~deb12u2_armel.deb
 1fe3cb89494f4dc97b7aff61151cb70a8ff60dd2 186924 libssl3-udeb_3.0.20-1~deb12u2_armel.udeb
 cf74327847526f1dec5c77fc534e115c839d4833 1644304 libssl3_3.0.20-1~deb12u2_armel.deb
 31c04aad283cc2f29f4058013d4cca5d7d8c91f9 648856 openssl-dbgsym_3.0.20-1~deb12u2_armel.deb
 4658b80240d1c8d3a2fdf594c26acee41c084831 7683 openssl_3.0.20-1~deb12u2_armel-buildd.buildinfo
 17bc52dd1db0e2aa92a46225de78d0264b92317e 1399520 openssl_3.0.20-1~deb12u2_armel.deb
Checksums-Sha256:
 5aa484dced54d442ad17e2eb549da937d032a98602252f5d82d16f1e04346457 1180876 libcrypto3-udeb_3.0.20-1~deb12u2_armel.udeb
 1397e90202d9a94852113ed5c3f1d9ef9a40cf2f12623f9f34dfe78538938855 2117072 libssl-dev_3.0.20-1~deb12u2_armel.deb
 c1cb40c0dceb9e937d7e084d4181cb8d0ec2ff0c4ac5beb8c9d1f004126f1b9e 4381980 libssl3-dbgsym_3.0.20-1~deb12u2_armel.deb
 4fc3ca38988848922534187841ba234a78ad5c7627d38dce63dbda37d94f26c6 186924 libssl3-udeb_3.0.20-1~deb12u2_armel.udeb
 9718caf674956ecabcf0d2b3328f4d24cea5f1bf4e99a513fb89e7c5fbfcbf27 1644304 libssl3_3.0.20-1~deb12u2_armel.deb
 e784426d2ac35f77e95494e4ce16739e6cdd71e48c5213c192e4fc7f520949d0 648856 openssl-dbgsym_3.0.20-1~deb12u2_armel.deb
 0854f52b5fd521cdec3120b2cc45e642f20b14db95cf15db00fb60db55c169d8 7683 openssl_3.0.20-1~deb12u2_armel-buildd.buildinfo
 bbcf703451ee3cf2305040d7c9d18c8e491686e0100bdd3c1ec1cb196fee9476 1399520 openssl_3.0.20-1~deb12u2_armel.deb
Files:
 f4f1a87b19f46762db450241c3aa4493 1180876 debian-installer optional libcrypto3-udeb_3.0.20-1~deb12u2_armel.udeb
 e7626540a92115a87201ffa8a5bc9e42 2117072 libdevel optional libssl-dev_3.0.20-1~deb12u2_armel.deb
 91ebd541771b59f2fec20119e6a1c893 4381980 debug optional libssl3-dbgsym_3.0.20-1~deb12u2_armel.deb
 df73105c1391c47b98414541bdfd4e86 186924 debian-installer optional libssl3-udeb_3.0.20-1~deb12u2_armel.udeb
 f5d92802c66f6a520466fec944b800f4 1644304 libs optional libssl3_3.0.20-1~deb12u2_armel.deb
 57025c20a5a9aebb7bc074fb46e3fafe 648856 debug optional openssl-dbgsym_3.0.20-1~deb12u2_armel.deb
 0f95031f904ea3c9533c12d1a27a78ed 7683 utils optional openssl_3.0.20-1~deb12u2_armel-buildd.buildinfo
 d9d42f22ce748540fc6ee5fd38a3ef2d 1399520 utils optional openssl_3.0.20-1~deb12u2_armel.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEElFiH1oZRZh1t4FSiXVp1sEH/1mIFAmokmlQACgkQXVp1sEH/
1mLq2A/5AZRkCiFrlyTA+U/cFTNq6UEcSs0g31fe1samHZWLrkJfzYiq4IgUXgLV
ubpINfnL679f4U5zM2T2uLIEyUE/Lnt0pqPsK2QdjNCQtaB2jx7sCvc8OPQTrnO2
5XCSj3dsbkpviInsy+sdDPsJQbBOfoGbXjJmlVpFtIaHfD+MSQzAv8r85W8ZSUv6
CR0t52ceJ4tZvmoWoSn4BLIa2WzM4TiQtOGoSrCRp57peE/7DZXEcvNHJWqB5YeL
hAGqs7ZZD9uhgy/YgAzchh/ZqA9So2XvbqdfWChPU9fiw6kSmMsi7o0l7eQ6r4jB
ZU/5jOacFb+qXbd0BFf9Qvy8ZILGeyofpMJlYso1XR8X4LtHaL3GfB5qg6DL4VXb
/qDxHhYJ+KjVfd82lN7J0lFBuywpIzTMFXNhjNt8bB/zVcumlLz1dPNRBAZzf+f3
Qx/Gk8cxgioRpu/VopMmFJZmck3Zzfv6bP3YVhs5+h6BMcIX0RzfsQsnPrvsRhcj
gFK+eLBSAD2Rtw8bmYUBM2r5ejhg7WI/kTIhbO1tDbbe/6/Uek/RBLzv3GOY9XB/
dUKIIKp0/L/LCTfI7m3cNsETGzMooJFHFjwmNqmmwV6Qr2XZ0nAVnHIMalmUE6rA
4tW+DoBVJRQYS6fxJb3/2l7QSJnazrLKSWXRzcer5hz2xBCN7lg=
=77NM
-----END PGP SIGNATURE-----