-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 03 Apr 2026 12:05:32 +0200 Source: openssl Binary: libcrypto3-udeb libssl-dev libssl3-udeb libssl3t64 libssl3t64-dbgsym openssl openssl-dbgsym openssl-provider-fips openssl-provider-fips-dbgsym openssl-provider-legacy openssl-provider-legacy-dbgsym Architecture: armel Version: 3.5.5-1~deb13u2 Distribution: trixie-security Urgency: medium Maintainer: arm Build Daemon (arm-conova-01) Changed-By: Sebastian Andrzej Siewior Description: libcrypto3-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb) libssl-dev - Secure Sockets Layer toolkit - development files libssl3-udeb - ssl shared library - udeb (udeb) libssl3t64 - Secure Sockets Layer toolkit - shared libraries openssl - Secure Sockets Layer toolkit - cryptographic utility openssl-provider-fips - Secure Sockets Layer toolkit - cryptographic utility openssl-provider-legacy - Secure Sockets Layer toolkit - cryptographic utility Closes: 1130650 Changes: openssl (3.5.5-1~deb13u2) trixie-security; urgency=medium . * CVE-2026-2673 ("OpenSSL TLS 1.3 server may choose unexpected key agreement group") (Closes: #1130650). * CVE-2026-28387 ("Potential use-after-free in DANE client code") * CVE-2026-28389 ("Possible NULL dereference when processing CMS KeyAgreeRecipientInfo") * CVE-2026-28390 ("Possible NULL dereference when processing CMS KeyTransportRecipient Info") * CVE-2026-31789 ("Heap buffer overflow in hexadecimal conversion") * CVE-2026-31790 ("Incorrect failure handling in RSA KEM RSASVE encapsulation") Checksums-Sha1: 2aebdce066bfb9fbea4f270d96ef7693a99e28f4 1505676 libcrypto3-udeb_3.5.5-1~deb13u2_armel.udeb a3cd9dbf2ba1bbe23f1abed5d39520591695f408 2535472 libssl-dev_3.5.5-1~deb13u2_armel.deb bc730e0ca7b67980dba17aa71d7201769ed62592 316916 libssl3-udeb_3.5.5-1~deb13u2_armel.udeb 4fedb12a9742598149f859d81f0f2e63eb71b8e1 5781112 libssl3t64-dbgsym_3.5.5-1~deb13u2_armel.deb 6297aa36e0e85aaaad5b7583c551b58c81594f0e 1949656 libssl3t64_3.5.5-1~deb13u2_armel.deb 3ce8bb3b03600d990143ca2eb5e52982ebb648a9 728740 openssl-dbgsym_3.5.5-1~deb13u2_armel.deb f357988d386c399d7173f882d31ab2b67624b1cc 1538992 openssl-provider-fips-dbgsym_3.5.5-1~deb13u2_armel.deb f55bd4a2805f5e8e4de574983e13adfe9a5ed77f 858724 openssl-provider-fips_3.5.5-1~deb13u2_armel.deb ad39db9ea5327c60a2c2efbbffffd41b0016ef02 92976 openssl-provider-legacy-dbgsym_3.5.5-1~deb13u2_armel.deb b631954c1cdfce75e385f918f163702424d92ebf 302552 openssl-provider-legacy_3.5.5-1~deb13u2_armel.deb 2705a72fbc372ce5a153eca79cbd735f0cf2cf0b 8641 openssl_3.5.5-1~deb13u2_armel-buildd.buildinfo bd889143d151ccbc886971bdf002e3304251b3ca 1458232 openssl_3.5.5-1~deb13u2_armel.deb Checksums-Sha256: 2a820b0b51b3d4b74e18f15f9bf7fef0ec171c31e20b6f08158b07df31045647 1505676 libcrypto3-udeb_3.5.5-1~deb13u2_armel.udeb 1bfe3f671d4e0120cf0dc72ce9a94b43747a369444a92aec5884831b06a3d0eb 2535472 libssl-dev_3.5.5-1~deb13u2_armel.deb d409b8049cf5e3ef67f3d0b47e75e7e67cd343d436a08be9cb39cb365f27a68e 316916 libssl3-udeb_3.5.5-1~deb13u2_armel.udeb d74c2cb6abf9efe73915ff37dd0e2f4151438bb895c044ceeee70f96f67f194a 5781112 libssl3t64-dbgsym_3.5.5-1~deb13u2_armel.deb a89a5d0e65b7304e852c34e05ed91c63692d155912ca8e26d3d3422b51bca700 1949656 libssl3t64_3.5.5-1~deb13u2_armel.deb fa809bd8fbf51f333f2fdeffd520851a538a6bd044f24cc6941f1707aaf340ff 728740 openssl-dbgsym_3.5.5-1~deb13u2_armel.deb 62179cf69e6a70a206568ad08e649a7316aca8ecca0b985e85dc04c24ec346b9 1538992 openssl-provider-fips-dbgsym_3.5.5-1~deb13u2_armel.deb 1c07397939da4243437a593f381c9aea23de81add98c753289fff839280ef2b1 858724 openssl-provider-fips_3.5.5-1~deb13u2_armel.deb 151eabdda1a7ed2663cb660ae3f74a04e4247602c29d4d19fef5b9acfe46e929 92976 openssl-provider-legacy-dbgsym_3.5.5-1~deb13u2_armel.deb 0fe98352a59a7e2fae9eb6c1d74a227d848601952b9b22305078110a870ba0b1 302552 openssl-provider-legacy_3.5.5-1~deb13u2_armel.deb 986058c34d7768863d67cb40fd61cdfe877394df4e06a0140768f7012ab9bf21 8641 openssl_3.5.5-1~deb13u2_armel-buildd.buildinfo 1e0968650d87e0995a689afe724aa19aac04409ca0e284371658e8e56f840b7f 1458232 openssl_3.5.5-1~deb13u2_armel.deb Files: 826ae7a7d9a1487cb7b3cb0d3e75e656 1505676 debian-installer optional libcrypto3-udeb_3.5.5-1~deb13u2_armel.udeb 38d75d0ef46ec21d07b62825e41daf8e 2535472 libdevel optional libssl-dev_3.5.5-1~deb13u2_armel.deb 72d924e96da01e738a844982dd8a828a 316916 debian-installer optional libssl3-udeb_3.5.5-1~deb13u2_armel.udeb 7fdae4c19ac18dd1fcb53f78f02d6e2f 5781112 debug optional libssl3t64-dbgsym_3.5.5-1~deb13u2_armel.deb 5b8e63e4735c25737ac1e519c1e3a9a6 1949656 libs optional libssl3t64_3.5.5-1~deb13u2_armel.deb 4dbf8a4a4a3950a518bc2e17c256ecac 728740 debug optional openssl-dbgsym_3.5.5-1~deb13u2_armel.deb 8eafa9528b755d8348c23b1414f91139 1538992 debug optional openssl-provider-fips-dbgsym_3.5.5-1~deb13u2_armel.deb 0440b49a63fefbe0eb280cb1e5891c37 858724 utils optional openssl-provider-fips_3.5.5-1~deb13u2_armel.deb 2d64eaf6cf21faff781126ac8f3554b8 92976 debug optional openssl-provider-legacy-dbgsym_3.5.5-1~deb13u2_armel.deb 4223f608097a06ca979057e3d35cada2 302552 utils optional openssl-provider-legacy_3.5.5-1~deb13u2_armel.deb f3d97563f2ccc943f97f43a94db56a73 8641 utils optional openssl_3.5.5-1~deb13u2_armel-buildd.buildinfo ec28995332fbee5c103116766472fcc6 1458232 utils optional openssl_3.5.5-1~deb13u2_armel.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEO4qAQUSIo2p/kVRf8U6eOZMpj68FAmnP5K0ACgkQ8U6eOZMp j68saQ//VkxgtMhc4OiX6YHOIFYCQSOF01ifeArBLZXUlvD4WiHyGEcRZGAuKoXt XnSxj+LPYgeMAU8IW4MTdKYOmbDzRGXKxQJbJSnjF/Fm0wR3J4er0fzBsQnNVHRC 65scjvXCzWlGbpa4ikRciStjKBaQWNrGRrlVShfrvY6UgdHlzQevCzB3Vtwbhb8v HNMvEN/qefikiPKqUHp7/FWfYX52HS0Q2JR1AOdU0ja+wf8e4J8ZrO0J3E4+RFEg 31o6rpS50NqrhcaK9PKyFqk5Q+4y8mq5AAJ8V5vVE9fZpvLIQkENzFDNJpy2isFM RGyG+atC5kUvNCxCyQhHW9Xij7xrj5NvF7WUKynbggPVyNydsttsBy6iU+1iUcd4 pNbBkdeiQ/Yra2uxtIooDe+qCqAVmoAkEWSrNrsADbAk/Qd2D117P3J4es2By4ek +pY9sfgwqojjBPNy3pQL1nxnTF/GGIXe+YBbDrETSuPJgP9k3Lf/P2sRS3z75ynB EEKY159LmvDzzz7sfCU2lxEd8A7LFzpBTNuL1Z5svPu9klgzPHQv0SwV/kP3zasM bUOh7jIBQv5r/Qfn4quKzgqJlmQW1rI9J+OjvBKul7JtsXk22pgahVsbCa9tKhzP c+LBiFBez7dSzR727purHxrVo/hqxtIkVT+gPUgjRuwFfq/B+r0= =BXU+ -----END PGP SIGNATURE-----