graphviz (14.1.2-1) unstable; urgency=medium
 .
   * New upstream release.

openssl (3.5.5-1) unstable; urgency=medium
 .
   * Import 3.5.5
    - CVE-2025-11187 (Improper validation of PBMAC1 parameters in PKCS#12 MAC
      verification)
    - CVE-2025-15467 (Stack buffer overflow in CMS AuthEnvelopedData parsing)
    - CVE-2025-15468 (NULL dereference in SSL_CIPHER_find() function on unknown
      cipher ID)
    - CVE-2025-15469 ("openssl dgst" one-shot codepath silently truncates inputs
      >16MB)
    - CVE-2025-66199 (TLS 1.3 CompressedCertificate excessive memory allocation)
    - CVE-2025-68160 (Heap out-of-bounds write in BIO_f_linebuffer on short
      writes)
    - CVE-2025-69418 (Unauthenticated/unencrypted trailing bytes with low-level
      OCB function calls)
    - CVE-2025-69419 (Out of bounds write in PKCS12_get_friendlyname() UTF-8
      conversion)
    - CVE-2025-69420 (Missing ASN1_TYPE validation in TS_RESP_verify_response()
      function)
    - CVE-2025-69421 (NULL Pointer Dereference in PKCS12_item_decrypt_d2i_ex
      function)
    - CVE-2026-22795 (Missing ASN1_TYPE validation in PKCS#12 parsing)
    - CVE-2026-22796 (ASN1_TYPE Type Confusion in the
    - PKCS7_digest_from_attributes() function)



REMOVED: mopidy-podcast-itunes 3.0.1-1
REMOVED: icecream-sundae 1.0.0-3
REMOVED: reprotest 0.7.32
REMOVED: gcc-15-doc 15.2.0-1
REMOVED: icecc 1.4-1
REMOVED: icecc-monitor 3.3-3
REMOVED: trickle 1.08+ds-1.2
REMOVED: gcc-12-doc 12.2.0-1
REMOVED: mopidy-alsamixer 2.0.1-1