-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 06 Jun 2026 21:55:35 +0200
Source: openssl
Binary: libcrypto3-udeb libssl-dev libssl3-udeb libssl3t64 libssl3t64-dbgsym openssl openssl-dbgsym openssl-provider-fips openssl-provider-fips-dbgsym openssl-provider-legacy openssl-provider-legacy-dbgsym
Architecture: riscv64
Version: 3.5.6-1~deb13u2
Distribution: trixie-security
Urgency: medium
Maintainer: riscv64 Build Daemon (rv-manda-03) <buildd_riscv64-rv-manda-03@buildd.debian.org>
Changed-By: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
Description:
 libcrypto3-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl3-udeb - ssl shared library - udeb (udeb)
 libssl3t64 - Secure Sockets Layer toolkit - shared libraries
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
 openssl-provider-fips - Secure Sockets Layer toolkit - cryptographic utility
 openssl-provider-legacy - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (3.5.6-1~deb13u2) trixie-security; urgency=medium
 .
   * CVE-2026-7383 ("Possible Heap Buffer Overflow in ASN.1 Multibyte String
     Conversion")
   * CVE-2026-9076 ("Out-of-Bounds Read in CMS Password-Based Decryption")
   * CVE-2026-34180 ("Heap Buffer Over-read in ASN.1 Content Parsing")
   * CVE-2026-34181 ("PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC
     Keys")
   * CVE-2026-34182 ("CMS AuthEnvelopedData Processing May Accept Forged
     Messages")
   * CVE-2026-34183 ("Unbounded Memory Growth in the QUIC PATH_CHALLENGE
     Handler")
   * CVE-2026-42764 ("NULL pointer dereference in QUIC server initial packet
     handling")
   * CVE-2026-42766 ("Possible NULL Dereference in Password-Based CMS
     Decryption")
   * CVE-2026-42767 ("NULL Pointer Dereference in CRMF EncryptedValue
     Decryption")
   * CVE-2026-42768 ("Multi-RecipientInfo Bleichenbacher Oracle in
     CMS_decrypt() and PKCS7_decrypt()")
   * CVE-2026-42769 ("Trust-Anchor Substitution via cert/issuer Typo in CMP
     rootCaKeyUpdate")
   * CVE-2026-42770 ("FFC-DH Peer Validation Uses Attacker-Supplied q")
   * CVE-2026-45445 ("AES-OCB IV Ignored on EVP_Cipher() Path")
   * CVE-2026-45446 ("Incorrect Tag Processing for Empty Messages in
     AES-GCM-SIV and AES-SIV modes")
   * CVE-2026-45447 ("Heap Use-After-Free in OpenSSL PKCS7_verify()")
Checksums-Sha1:
 3595a00118bf2106d971eeca31bb56d193b69cd8 1809512 libcrypto3-udeb_3.5.6-1~deb13u2_riscv64.udeb
 fcb2c7c96b6d8ed0f92d0e14f3fc9358db9f2084 5809164 libssl-dev_3.5.6-1~deb13u2_riscv64.deb
 6d6e479c754df1202e945fb1fd73dd78d1c94439 378868 libssl3-udeb_3.5.6-1~deb13u2_riscv64.udeb
 0a2a70daeb1f914cd2845e65ab4f4b4614b65d04 5786720 libssl3t64-dbgsym_3.5.6-1~deb13u2_riscv64.deb
 e7edd3c914ac46acd633dfceb0b08b095d6c3156 2230160 libssl3t64_3.5.6-1~deb13u2_riscv64.deb
 a84408bf75d0195eab8fb8cc357d798f940c4706 738096 openssl-dbgsym_3.5.6-1~deb13u2_riscv64.deb
 36529da864fbd76f5a35619c2353658f3177e4f1 1658132 openssl-provider-fips-dbgsym_3.5.6-1~deb13u2_riscv64.deb
 5bcab5103187afe5b5997a2c1ff778579a7ea5d7 888520 openssl-provider-fips_3.5.6-1~deb13u2_riscv64.deb
 ea4fa81f2d6d916adc3d36a0fa6e2fb5c44e862d 92400 openssl-provider-legacy-dbgsym_3.5.6-1~deb13u2_riscv64.deb
 9e815b3d7dade95a136e3c1fa90a28c4e6278053 313640 openssl-provider-legacy_3.5.6-1~deb13u2_riscv64.deb
 47030e54e98fc850b5284dcd4edc912a4d9f5fd8 8805 openssl_3.5.6-1~deb13u2_riscv64-buildd.buildinfo
 8087368353206b2784886bc0cdf312eb37268d64 1483828 openssl_3.5.6-1~deb13u2_riscv64.deb
Checksums-Sha256:
 4b97c57cffb2b5920d706e9326df9e230a0a79af29f3b446d3401fd45bbdb06a 1809512 libcrypto3-udeb_3.5.6-1~deb13u2_riscv64.udeb
 f7559b8c583cf92368e7b82dda6e96b4623ebc4ad12f00257406fed3cc735bb8 5809164 libssl-dev_3.5.6-1~deb13u2_riscv64.deb
 1e6ef7fd8dd6d5bc3b0ccca494fd454ad1ef064d1e03032b7419d1a17e09a057 378868 libssl3-udeb_3.5.6-1~deb13u2_riscv64.udeb
 cad3d069177b9dde04f6120bd2c55f30482a024381a93e8870f8f0ec71853198 5786720 libssl3t64-dbgsym_3.5.6-1~deb13u2_riscv64.deb
 710b8bdf34133f3c6f74f2664f32fb5419917300b97b09e25395f3a10f173bbf 2230160 libssl3t64_3.5.6-1~deb13u2_riscv64.deb
 a20b015f378a57b7e21fb7be439f66264392d5737335f26ec34fd2034153a1cd 738096 openssl-dbgsym_3.5.6-1~deb13u2_riscv64.deb
 4b39bd0948626152e44bedaa7ce9742dc4db13a1c40900b5534ad7f57d131499 1658132 openssl-provider-fips-dbgsym_3.5.6-1~deb13u2_riscv64.deb
 5dc3d5e9c8a36054a4499b4a4057801ccf62aa1f5fd8fc6e506c568b2b1ffe37 888520 openssl-provider-fips_3.5.6-1~deb13u2_riscv64.deb
 07dbfe1705ab2430298288e2756e47ccc95eef9d88b5a00bca3aefaad5ebc7f9 92400 openssl-provider-legacy-dbgsym_3.5.6-1~deb13u2_riscv64.deb
 6cd0e68d3b68fa3cdcccc1cd872521107d6c263dfef87e994b154dc81f4c92f4 313640 openssl-provider-legacy_3.5.6-1~deb13u2_riscv64.deb
 d7aa0f47498851e894066d81e42769fc455f8e9476b9b4851771c84cff776e24 8805 openssl_3.5.6-1~deb13u2_riscv64-buildd.buildinfo
 d7bc7bf7fdb8162db7dd188df999dab31df668339f8577bd8b6d324b4f36b9ce 1483828 openssl_3.5.6-1~deb13u2_riscv64.deb
Files:
 7c626e10c916758a783c5b5a05e01ccf 1809512 debian-installer optional libcrypto3-udeb_3.5.6-1~deb13u2_riscv64.udeb
 8f12683b48cbea76e4c0fa60e890aafb 5809164 libdevel optional libssl-dev_3.5.6-1~deb13u2_riscv64.deb
 1ef1585f5126f2919ee727ccdc3fbc81 378868 debian-installer optional libssl3-udeb_3.5.6-1~deb13u2_riscv64.udeb
 f794ae159de2a70b6140c07ac7a2e548 5786720 debug optional libssl3t64-dbgsym_3.5.6-1~deb13u2_riscv64.deb
 c1c2d7fa053b936863340c1fa5d6ff50 2230160 libs optional libssl3t64_3.5.6-1~deb13u2_riscv64.deb
 8c51dd52200732f5780f5af3b4a220bc 738096 debug optional openssl-dbgsym_3.5.6-1~deb13u2_riscv64.deb
 8381aeb33f469ffe0e0d9931846a29db 1658132 debug optional openssl-provider-fips-dbgsym_3.5.6-1~deb13u2_riscv64.deb
 53242826a5594ef717b93e19e9e431ed 888520 utils optional openssl-provider-fips_3.5.6-1~deb13u2_riscv64.deb
 5387ca20b1bd509931c8069359c78d84 92400 debug optional openssl-provider-legacy-dbgsym_3.5.6-1~deb13u2_riscv64.deb
 7f58db4a38af930aaded3b8e6750906f 313640 utils optional openssl-provider-legacy_3.5.6-1~deb13u2_riscv64.deb
 9e6aff82f92e745241f4016f15a3829f 8805 utils optional openssl_3.5.6-1~deb13u2_riscv64-buildd.buildinfo
 8b2c14d8c070217b555659305b2d0b84 1483828 utils optional openssl_3.5.6-1~deb13u2_riscv64.deb

-----BEGIN PGP SIGNATURE-----
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=lD/O
-----END PGP SIGNATURE-----