-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 06 Jun 2026 21:55:35 +0200
Source: openssl
Binary: libcrypto3-udeb libssl-dev libssl3-udeb libssl3t64 libssl3t64-dbgsym openssl openssl-dbgsym openssl-provider-fips openssl-provider-fips-dbgsym openssl-provider-legacy openssl-provider-legacy-dbgsym
Architecture: armhf
Version: 3.5.6-1~deb13u2
Distribution: trixie-security
Urgency: medium
Maintainer: armhf Build Daemon (arm-conova-01) <buildd_arm64-arm-conova-01@buildd.debian.org>
Changed-By: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
Description:
 libcrypto3-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl3-udeb - ssl shared library - udeb (udeb)
 libssl3t64 - Secure Sockets Layer toolkit - shared libraries
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
 openssl-provider-fips - Secure Sockets Layer toolkit - cryptographic utility
 openssl-provider-legacy - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (3.5.6-1~deb13u2) trixie-security; urgency=medium
 .
   * CVE-2026-7383 ("Possible Heap Buffer Overflow in ASN.1 Multibyte String
     Conversion")
   * CVE-2026-9076 ("Out-of-Bounds Read in CMS Password-Based Decryption")
   * CVE-2026-34180 ("Heap Buffer Over-read in ASN.1 Content Parsing")
   * CVE-2026-34181 ("PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC
     Keys")
   * CVE-2026-34182 ("CMS AuthEnvelopedData Processing May Accept Forged
     Messages")
   * CVE-2026-34183 ("Unbounded Memory Growth in the QUIC PATH_CHALLENGE
     Handler")
   * CVE-2026-42764 ("NULL pointer dereference in QUIC server initial packet
     handling")
   * CVE-2026-42766 ("Possible NULL Dereference in Password-Based CMS
     Decryption")
   * CVE-2026-42767 ("NULL Pointer Dereference in CRMF EncryptedValue
     Decryption")
   * CVE-2026-42768 ("Multi-RecipientInfo Bleichenbacher Oracle in
     CMS_decrypt() and PKCS7_decrypt()")
   * CVE-2026-42769 ("Trust-Anchor Substitution via cert/issuer Typo in CMP
     rootCaKeyUpdate")
   * CVE-2026-42770 ("FFC-DH Peer Validation Uses Attacker-Supplied q")
   * CVE-2026-45445 ("AES-OCB IV Ignored on EVP_Cipher() Path")
   * CVE-2026-45446 ("Incorrect Tag Processing for Empty Messages in
     AES-GCM-SIV and AES-SIV modes")
   * CVE-2026-45447 ("Heap Use-After-Free in OpenSSL PKCS7_verify()")
Checksums-Sha1:
 c2058c37a76616275c97c72b844ccc2f3901388d 1552444 libcrypto3-udeb_3.5.6-1~deb13u2_armhf.udeb
 a6e3b3b45aaf7799d6ab6ad71e09218a813866c8 2570728 libssl-dev_3.5.6-1~deb13u2_armhf.deb
 e3233b3606c9cb61c8885e2ebf5ba787793b74a0 317220 libssl3-udeb_3.5.6-1~deb13u2_armhf.udeb
 b816086effa9ac6e7c40248230732ca112d404b2 5874224 libssl3t64-dbgsym_3.5.6-1~deb13u2_armhf.deb
 70634fafccf8dee1bbccd0091a321e81f8983755 1994220 libssl3t64_3.5.6-1~deb13u2_armhf.deb
 c4dbf0bbc102816a8549eb12b86ca30a02cf8d18 748392 openssl-dbgsym_3.5.6-1~deb13u2_armhf.deb
 492dacb37a4cba1d27f7700ca09f904e889ee947 1574424 openssl-provider-fips-dbgsym_3.5.6-1~deb13u2_armhf.deb
 8dbe67de4cb954d969d758006f2a1d653acd6b56 880040 openssl-provider-fips_3.5.6-1~deb13u2_armhf.deb
 3d17cadd59a2e42c1873f3e854424713efd2b1dc 94804 openssl-provider-legacy-dbgsym_3.5.6-1~deb13u2_armhf.deb
 398bd3166df10b775bb3ceba1b8a01af63dc525a 304600 openssl-provider-legacy_3.5.6-1~deb13u2_armhf.deb
 96e67eeddc2b7526b1bd5f67ef9d60ef17f66454 8673 openssl_3.5.6-1~deb13u2_armhf-buildd.buildinfo
 3485976c08f4cf3092f78c378eee82eeb52c2af0 1470328 openssl_3.5.6-1~deb13u2_armhf.deb
Checksums-Sha256:
 f70c46a48136e6a689e299a58ad4f2039a537fb55b178110d3e491b0c175a0da 1552444 libcrypto3-udeb_3.5.6-1~deb13u2_armhf.udeb
 fc167d04049dfcf91ccff8687222a186be681cac2298ae89cf8523518ad04c88 2570728 libssl-dev_3.5.6-1~deb13u2_armhf.deb
 ab9333ec67d865271784a79ca7d17bc94e495833a6b5237f0c78cfc34606084d 317220 libssl3-udeb_3.5.6-1~deb13u2_armhf.udeb
 fa3f173d2a9bc313961a65656253ebf048b2e666dc5de759dc213b8dc3253c6d 5874224 libssl3t64-dbgsym_3.5.6-1~deb13u2_armhf.deb
 b574fdbc1ac7a50df51f382a23847a68687892ceb06dcf0b1bc1ed4730109c28 1994220 libssl3t64_3.5.6-1~deb13u2_armhf.deb
 0b22bac9daeb4a94a5b217f623d8749ef818ce0c9d3d04496c816bb83b551ec4 748392 openssl-dbgsym_3.5.6-1~deb13u2_armhf.deb
 4c7a171d185d5eb2a14f0fc8fbdae7cd99b0bad8df5632e7be23becd49c47384 1574424 openssl-provider-fips-dbgsym_3.5.6-1~deb13u2_armhf.deb
 787072fcfad7d49e0998ec7fe99be48382353ea4879faa02ff203aaa9e05acfd 880040 openssl-provider-fips_3.5.6-1~deb13u2_armhf.deb
 68c3d1f7a0efc61fae60ed67119b050f558a24fad36db04ac13f6913838995c7 94804 openssl-provider-legacy-dbgsym_3.5.6-1~deb13u2_armhf.deb
 5acf44c8ea30237dee2a977e9168ee1314707cebc902c327f0d6d77f005c5503 304600 openssl-provider-legacy_3.5.6-1~deb13u2_armhf.deb
 d9372896938c6f4f669a91b4c1e1f9698ce4387fcce89cb22440427e7061115d 8673 openssl_3.5.6-1~deb13u2_armhf-buildd.buildinfo
 ed0944e23284f0b021bec199812f7711927a14319cd81e5b57254f3cc7fac8c5 1470328 openssl_3.5.6-1~deb13u2_armhf.deb
Files:
 9b495c1a34b47ef9356ddc6993754406 1552444 debian-installer optional libcrypto3-udeb_3.5.6-1~deb13u2_armhf.udeb
 8a1e37ed5dd906ce9c20fa339213f1df 2570728 libdevel optional libssl-dev_3.5.6-1~deb13u2_armhf.deb
 c0d8f795277949289241d5edb2c98d62 317220 debian-installer optional libssl3-udeb_3.5.6-1~deb13u2_armhf.udeb
 76930c80a417e3f1e7b3bd2bda6c6354 5874224 debug optional libssl3t64-dbgsym_3.5.6-1~deb13u2_armhf.deb
 4201bd6c282fc872a314c66abf680459 1994220 libs optional libssl3t64_3.5.6-1~deb13u2_armhf.deb
 e7c592da2dfcbd76cca1777e2cd8a47c 748392 debug optional openssl-dbgsym_3.5.6-1~deb13u2_armhf.deb
 d891a763bdc98b045b6ee15e804abacd 1574424 debug optional openssl-provider-fips-dbgsym_3.5.6-1~deb13u2_armhf.deb
 b8f2d041ed50cb241da357e499967084 880040 utils optional openssl-provider-fips_3.5.6-1~deb13u2_armhf.deb
 2b840a43e0d0ce22838f3cdea2b03718 94804 debug optional openssl-provider-legacy-dbgsym_3.5.6-1~deb13u2_armhf.deb
 2a1c0d325c7d74899ad87a4db23ed9b3 304600 utils optional openssl-provider-legacy_3.5.6-1~deb13u2_armhf.deb
 8eea0dcc0b14f0a6c5fec98652c227ad 8673 utils optional openssl_3.5.6-1~deb13u2_armhf-buildd.buildinfo
 d8a109bd68773b3be896500562b9b03f 1470328 utils optional openssl_3.5.6-1~deb13u2_armhf.deb

-----BEGIN PGP SIGNATURE-----
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=U7lA
-----END PGP SIGNATURE-----