-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 06 Jun 2026 21:55:35 +0200
Source: openssl
Binary: libcrypto3-udeb libssl-dev libssl3-udeb libssl3t64 libssl3t64-dbgsym openssl openssl-dbgsym openssl-provider-fips openssl-provider-fips-dbgsym openssl-provider-legacy openssl-provider-legacy-dbgsym
Architecture: i386
Version: 3.5.6-1~deb13u2
Distribution: trixie-security
Urgency: medium
Maintainer: i386 Build Daemon (x86-grnet-01) <buildd_amd64-x86-grnet-01@buildd.debian.org>
Changed-By: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
Description:
 libcrypto3-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl3-udeb - ssl shared library - udeb (udeb)
 libssl3t64 - Secure Sockets Layer toolkit - shared libraries
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
 openssl-provider-fips - Secure Sockets Layer toolkit - cryptographic utility
 openssl-provider-legacy - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (3.5.6-1~deb13u2) trixie-security; urgency=medium
 .
   * CVE-2026-7383 ("Possible Heap Buffer Overflow in ASN.1 Multibyte String
     Conversion")
   * CVE-2026-9076 ("Out-of-Bounds Read in CMS Password-Based Decryption")
   * CVE-2026-34180 ("Heap Buffer Over-read in ASN.1 Content Parsing")
   * CVE-2026-34181 ("PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC
     Keys")
   * CVE-2026-34182 ("CMS AuthEnvelopedData Processing May Accept Forged
     Messages")
   * CVE-2026-34183 ("Unbounded Memory Growth in the QUIC PATH_CHALLENGE
     Handler")
   * CVE-2026-42764 ("NULL pointer dereference in QUIC server initial packet
     handling")
   * CVE-2026-42766 ("Possible NULL Dereference in Password-Based CMS
     Decryption")
   * CVE-2026-42767 ("NULL Pointer Dereference in CRMF EncryptedValue
     Decryption")
   * CVE-2026-42768 ("Multi-RecipientInfo Bleichenbacher Oracle in
     CMS_decrypt() and PKCS7_decrypt()")
   * CVE-2026-42769 ("Trust-Anchor Substitution via cert/issuer Typo in CMP
     rootCaKeyUpdate")
   * CVE-2026-42770 ("FFC-DH Peer Validation Uses Attacker-Supplied q")
   * CVE-2026-45445 ("AES-OCB IV Ignored on EVP_Cipher() Path")
   * CVE-2026-45446 ("Incorrect Tag Processing for Empty Messages in
     AES-GCM-SIV and AES-SIV modes")
   * CVE-2026-45447 ("Heap Use-After-Free in OpenSSL PKCS7_verify()")
Checksums-Sha1:
 55eefb6d39309d1df9d50d6ce514ff153f352d33 1948108 libcrypto3-udeb_3.5.6-1~deb13u2_i386.udeb
 07ef871c801f1853cf8466af7129085816697773 3007052 libssl-dev_3.5.6-1~deb13u2_i386.deb
 ca51d95a9bbd643d7db1f031d7496eb677497441 418452 libssl3-udeb_3.5.6-1~deb13u2_i386.udeb
 fb30dbfdb7201b9d6c0049a0ad59890e650f40ff 4863688 libssl3t64-dbgsym_3.5.6-1~deb13u2_i386.deb
 bc96bd972f7d0217b548236eb30d7370f9a1e814 2431704 libssl3t64_3.5.6-1~deb13u2_i386.deb
 5a7209e2f908efff59594ba4643e0722f77975d0 652892 openssl-dbgsym_3.5.6-1~deb13u2_i386.deb
 8a7f9dcd1eaea25ff2dd8d4a0c0eaa17950140d8 1304488 openssl-provider-fips-dbgsym_3.5.6-1~deb13u2_i386.deb
 b42079912b86cc80e5db6dfc68a7b2388cd1f7d4 1005352 openssl-provider-fips_3.5.6-1~deb13u2_i386.deb
 82fbdc214b825555756f0e5698b7ae070f08cd41 69652 openssl-provider-legacy-dbgsym_3.5.6-1~deb13u2_i386.deb
 f7b9166d227a24379cb4f3ec5c9beb90652a6e7f 308584 openssl-provider-legacy_3.5.6-1~deb13u2_i386.deb
 46939f8fb1a820ef6f6cf436a45af9d911d64e88 8684 openssl_3.5.6-1~deb13u2_i386-buildd.buildinfo
 4619b7630629e665a5e143e32f26c67dca96837c 1508072 openssl_3.5.6-1~deb13u2_i386.deb
Checksums-Sha256:
 afa9843b370144a4f882e21df4b150ebce93b872fdb8086d1d5116e19e60dbc1 1948108 libcrypto3-udeb_3.5.6-1~deb13u2_i386.udeb
 837c0cd8ebd26cb079f518378806bb9cafc7b64f65166441c302b0d2729db66e 3007052 libssl-dev_3.5.6-1~deb13u2_i386.deb
 9dd4cd6579edef326a059248e3921da94918aec13f4d574f977b6e01e6d68685 418452 libssl3-udeb_3.5.6-1~deb13u2_i386.udeb
 74441eac3c7a1b3bb189a3521a0dd2de8e3367cd75038ddb12f4f24ddddd0e46 4863688 libssl3t64-dbgsym_3.5.6-1~deb13u2_i386.deb
 e20c83707cc558e240dba3023741c261d894e21ff17a28e2883eec6ed71b5483 2431704 libssl3t64_3.5.6-1~deb13u2_i386.deb
 1437ed1f8438f07586174fcbbdb7af1c6ff832b9a5684230509f47d9e26f0100 652892 openssl-dbgsym_3.5.6-1~deb13u2_i386.deb
 642ece36e3b0a1bd898b3757d4b74a0c67bf6fdec9b1463960da6225c469784a 1304488 openssl-provider-fips-dbgsym_3.5.6-1~deb13u2_i386.deb
 9638d3424fa6608103ab5df1b9ba1bed2ce4c5a4f9e36f5c30cd50fd23bbe65f 1005352 openssl-provider-fips_3.5.6-1~deb13u2_i386.deb
 1f6d96fb1ff951069dacfb816bbd992890328d9f0cec5292808d657a56144d7a 69652 openssl-provider-legacy-dbgsym_3.5.6-1~deb13u2_i386.deb
 d49016773d90e4fddc02c9d777d984a98c161caf8782bed80c5ce93a3a25c50f 308584 openssl-provider-legacy_3.5.6-1~deb13u2_i386.deb
 e9d651b72e07f5bb34ed82ad88ac3575c2f74379c940cf7b0e5aa3c73d06529d 8684 openssl_3.5.6-1~deb13u2_i386-buildd.buildinfo
 29807afa20e3d5c65279212436a4f063b31debfb5b7728ccf08a82120cc68915 1508072 openssl_3.5.6-1~deb13u2_i386.deb
Files:
 184903192eeef83f7a430b6d2bf1bd49 1948108 debian-installer optional libcrypto3-udeb_3.5.6-1~deb13u2_i386.udeb
 3c053264ade1f1bb1caab98941447625 3007052 libdevel optional libssl-dev_3.5.6-1~deb13u2_i386.deb
 f1095ae4fe1111c2c186428b4cd0cd0f 418452 debian-installer optional libssl3-udeb_3.5.6-1~deb13u2_i386.udeb
 15bf105f847db48226c802ff3a1cbbf4 4863688 debug optional libssl3t64-dbgsym_3.5.6-1~deb13u2_i386.deb
 0a90ba2c89be02497e36acdc512f88ed 2431704 libs optional libssl3t64_3.5.6-1~deb13u2_i386.deb
 8255be9d03e3cb250a9d3a14201632ba 652892 debug optional openssl-dbgsym_3.5.6-1~deb13u2_i386.deb
 74965153beddeb43dccba78913681cbd 1304488 debug optional openssl-provider-fips-dbgsym_3.5.6-1~deb13u2_i386.deb
 8f61ef87bb2880476a4d4f14b5867dea 1005352 utils optional openssl-provider-fips_3.5.6-1~deb13u2_i386.deb
 a5f0dd992d4889595b7bcd15b19c36a5 69652 debug optional openssl-provider-legacy-dbgsym_3.5.6-1~deb13u2_i386.deb
 bb9ceaecf1128ad731ca448e2bf40b38 308584 utils optional openssl-provider-legacy_3.5.6-1~deb13u2_i386.deb
 77fa97543a440557db934e873c4a078d 8684 utils optional openssl_3.5.6-1~deb13u2_i386-buildd.buildinfo
 c9da17539facfe2bff706c644bb06e96 1508072 utils optional openssl_3.5.6-1~deb13u2_i386.deb

-----BEGIN PGP SIGNATURE-----
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=pot6
-----END PGP SIGNATURE-----