-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 06 Jun 2026 21:55:35 +0200
Source: openssl
Binary: libcrypto3-udeb libssl-dev libssl3-udeb libssl3t64 libssl3t64-dbgsym openssl openssl-dbgsym openssl-provider-fips openssl-provider-fips-dbgsym openssl-provider-legacy openssl-provider-legacy-dbgsym
Architecture: ppc64el
Version: 3.5.6-1~deb13u2
Distribution: trixie-security
Urgency: medium
Maintainer: ppc64el Build Daemon (ppc64el-conova-01) <buildd_ppc64el-ppc64el-conova-01@buildd.debian.org>
Changed-By: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
Description:
 libcrypto3-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl3-udeb - ssl shared library - udeb (udeb)
 libssl3t64 - Secure Sockets Layer toolkit - shared libraries
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
 openssl-provider-fips - Secure Sockets Layer toolkit - cryptographic utility
 openssl-provider-legacy - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (3.5.6-1~deb13u2) trixie-security; urgency=medium
 .
   * CVE-2026-7383 ("Possible Heap Buffer Overflow in ASN.1 Multibyte String
     Conversion")
   * CVE-2026-9076 ("Out-of-Bounds Read in CMS Password-Based Decryption")
   * CVE-2026-34180 ("Heap Buffer Over-read in ASN.1 Content Parsing")
   * CVE-2026-34181 ("PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC
     Keys")
   * CVE-2026-34182 ("CMS AuthEnvelopedData Processing May Accept Forged
     Messages")
   * CVE-2026-34183 ("Unbounded Memory Growth in the QUIC PATH_CHALLENGE
     Handler")
   * CVE-2026-42764 ("NULL pointer dereference in QUIC server initial packet
     handling")
   * CVE-2026-42766 ("Possible NULL Dereference in Password-Based CMS
     Decryption")
   * CVE-2026-42767 ("NULL Pointer Dereference in CRMF EncryptedValue
     Decryption")
   * CVE-2026-42768 ("Multi-RecipientInfo Bleichenbacher Oracle in
     CMS_decrypt() and PKCS7_decrypt()")
   * CVE-2026-42769 ("Trust-Anchor Substitution via cert/issuer Typo in CMP
     rootCaKeyUpdate")
   * CVE-2026-42770 ("FFC-DH Peer Validation Uses Attacker-Supplied q")
   * CVE-2026-45445 ("AES-OCB IV Ignored on EVP_Cipher() Path")
   * CVE-2026-45446 ("Incorrect Tag Processing for Empty Messages in
     AES-GCM-SIV and AES-SIV modes")
   * CVE-2026-45447 ("Heap Use-After-Free in OpenSSL PKCS7_verify()")
Checksums-Sha1:
 05a4a7db985dd6534ed9c39f8962e099923a3369 2054700 libcrypto3-udeb_3.5.6-1~deb13u2_ppc64el.udeb
 97bccbdee9f06b5740b7ada10b91752821e53931 3130088 libssl-dev_3.5.6-1~deb13u2_ppc64el.deb
 d395d18a662c969ffdf1f38ed60518b13eee7d63 402272 libssl3-udeb_3.5.6-1~deb13u2_ppc64el.udeb
 90f232f6c8f8fb9e485b384bb3123ec727446c48 6257188 libssl3t64-dbgsym_3.5.6-1~deb13u2_ppc64el.deb
 0ab68b91c0bdb828cc64145b2d5ffebcee2cd442 2507916 libssl3t64_3.5.6-1~deb13u2_ppc64el.deb
 33acdde82ac6ff7b7d9603d4b38ff0e5e2d88f20 785280 openssl-dbgsym_3.5.6-1~deb13u2_ppc64el.deb
 2d51249651708daa7fcf035e3fe13c0d61048e8c 1780612 openssl-provider-fips-dbgsym_3.5.6-1~deb13u2_ppc64el.deb
 73b2b455ea041f2495f47ea95e09c13fd566418a 1080848 openssl-provider-fips_3.5.6-1~deb13u2_ppc64el.deb
 9ae519be86c3bc5ecd00d490593a538de092e787 98728 openssl-provider-legacy-dbgsym_3.5.6-1~deb13u2_ppc64el.deb
 2062a41f032b5080e61b5da4a2f5600333f15f02 313416 openssl-provider-legacy_3.5.6-1~deb13u2_ppc64el.deb
 507aa85268c0988cec93186a8044a7d3e45d87ad 8863 openssl_3.5.6-1~deb13u2_ppc64el-buildd.buildinfo
 4d4a60e369bcaf10c1da011fe69acc72ac8d3cba 1501448 openssl_3.5.6-1~deb13u2_ppc64el.deb
Checksums-Sha256:
 f503d80e7a386056866f570c190b04d16567ac6a572ad4d3cc788dcbcabe8df2 2054700 libcrypto3-udeb_3.5.6-1~deb13u2_ppc64el.udeb
 1bc298d1402f8c86e3a5297d306dac2b137024a901e3d8486413f21c52f2fd60 3130088 libssl-dev_3.5.6-1~deb13u2_ppc64el.deb
 29642661ad1333593862ccfefa238779fc7340784f97c21affa53981483f21f1 402272 libssl3-udeb_3.5.6-1~deb13u2_ppc64el.udeb
 b59004663699d83bbe8bb511e5ceebf9ba9bd3027396f385d01ac05510ee025d 6257188 libssl3t64-dbgsym_3.5.6-1~deb13u2_ppc64el.deb
 ffc34d07e8ef2be53d717876259983d20c6d0e16d7f74bfebfd0dc913295c6ba 2507916 libssl3t64_3.5.6-1~deb13u2_ppc64el.deb
 fc92c2f7bb186ea1111290ad2c3cebcaf85e66a798e629ebd18307280acefbbc 785280 openssl-dbgsym_3.5.6-1~deb13u2_ppc64el.deb
 4e3b986828d0394e5d725faf668c469d9d467bcd4da0e854502f02807af25285 1780612 openssl-provider-fips-dbgsym_3.5.6-1~deb13u2_ppc64el.deb
 06dffbb12455ae0631e00c70bc2c17d51fe8c97acc1e4f1d3c2d748c2312810b 1080848 openssl-provider-fips_3.5.6-1~deb13u2_ppc64el.deb
 6bdb9415793bf0f2ae7bf46a952aec6399595b85aebc0d1a59e9f49fca915a38 98728 openssl-provider-legacy-dbgsym_3.5.6-1~deb13u2_ppc64el.deb
 b79f3e249f48a4ac086424270f14adb2592df0a76f160aeca9bbeeff88bf06b9 313416 openssl-provider-legacy_3.5.6-1~deb13u2_ppc64el.deb
 0fa3e087b534716731a53c28867fa7341acd72d25d51c95bd877b8a74061fcd1 8863 openssl_3.5.6-1~deb13u2_ppc64el-buildd.buildinfo
 87fc256e8f83acd469e2708dd266b3b60e4298ec3efa73cd00dd4ec562c8adeb 1501448 openssl_3.5.6-1~deb13u2_ppc64el.deb
Files:
 bd00f2bb70c4a206e8f39c4592942ba8 2054700 debian-installer optional libcrypto3-udeb_3.5.6-1~deb13u2_ppc64el.udeb
 a5d289dfe7935d97cf061a7107042d75 3130088 libdevel optional libssl-dev_3.5.6-1~deb13u2_ppc64el.deb
 8092cdcfcf69b862639fce09e944bcdc 402272 debian-installer optional libssl3-udeb_3.5.6-1~deb13u2_ppc64el.udeb
 b0e4046230d98fb34b331d4a869b0fad 6257188 debug optional libssl3t64-dbgsym_3.5.6-1~deb13u2_ppc64el.deb
 b2293e87795a9bc861421e91e35dc468 2507916 libs optional libssl3t64_3.5.6-1~deb13u2_ppc64el.deb
 b2939ee2ba75946d6ac4489907c09c2d 785280 debug optional openssl-dbgsym_3.5.6-1~deb13u2_ppc64el.deb
 be4709ee209ebe0006b137f92ba71732 1780612 debug optional openssl-provider-fips-dbgsym_3.5.6-1~deb13u2_ppc64el.deb
 4c3631d87ee04b8bf3fe0e127a700654 1080848 utils optional openssl-provider-fips_3.5.6-1~deb13u2_ppc64el.deb
 23a7b6de79b6efd70b56b199b404ab95 98728 debug optional openssl-provider-legacy-dbgsym_3.5.6-1~deb13u2_ppc64el.deb
 e86e4db4ace7712227f8ba1be4636757 313416 utils optional openssl-provider-legacy_3.5.6-1~deb13u2_ppc64el.deb
 607d171c81b75fc285dc99d69c59738e 8863 utils optional openssl_3.5.6-1~deb13u2_ppc64el-buildd.buildinfo
 9c3ca1ff7b2f67bc388941b892fe50de 1501448 utils optional openssl_3.5.6-1~deb13u2_ppc64el.deb

-----BEGIN PGP SIGNATURE-----
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=pStl
-----END PGP SIGNATURE-----