-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 24 Jan 2026 16:01:59 +0100
Source: openssl
Binary: libcrypto3-udeb libssl-dev libssl3 libssl3-dbgsym libssl3-udeb openssl openssl-dbgsym
Architecture: armel
Version: 3.0.18-1~deb12u2
Distribution: bookworm-security
Urgency: medium
Maintainer: arm Build Daemon (arm-ubc-04) <buildd_arm64-arm-ubc-04@buildd.debian.org>
Changed-By: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
Description:
 libcrypto3-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl3    - Secure Sockets Layer toolkit - shared libraries
 libssl3-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (3.0.18-1~deb12u2) bookworm-security; urgency=medium
 .
   * CVE-2025-15467 (Stack buffer overflow in CMS AuthEnvelopedData parsing)
   * CVE-2025-68160 (Heap out-of-bounds write in BIO_f_linebuffer on short
     writes)
   * CVE-2025-69418 (Unauthenticated/unencrypted trailing bytes with low-level
     OCB function calls)
   * CVE-2025-69419 (Out of bounds write in PKCS12_get_friendlyname() UTF-8
     conversion)
   * CVE-2025-69420 (Missing ASN1_TYPE validation in TS_RESP_verify_response()
     function)
   * CVE-2025-69421 (NULL Pointer Dereference in PKCS12_item_decrypt_d2i_ex
     function)
   * CVE-2026-22795 (Missing ASN1_TYPE validation in PKCS#12 parsing)
   * CVE-2026-22796 (ASN1_TYPE Type Confusion in the
     PKCS7_digest_from_attributes() function)
Checksums-Sha1:
 bd04e8c1a0f4bffcd6b3b7c06f8c9c9db034ec77 1178840 libcrypto3-udeb_3.0.18-1~deb12u2_armel.udeb
 7bcc976160e0d9034be7dfb060e5c8669b4a1f1b 2118576 libssl-dev_3.0.18-1~deb12u2_armel.deb
 14e7a9a8b21cee5271361d58000d728949863887 4383700 libssl3-dbgsym_3.0.18-1~deb12u2_armel.deb
 b0b6a4ca1ee0bdabcd7fe6d83a08666b425ab1d1 186608 libssl3-udeb_3.0.18-1~deb12u2_armel.udeb
 fe35fc6f19109bf3a53eb03feeb6ef8f63765e47 1639276 libssl3_3.0.18-1~deb12u2_armel.deb
 449397e040a16c6003fab7cb4f024b7e358571f4 650032 openssl-dbgsym_3.0.18-1~deb12u2_armel.deb
 1194431214733708081338ad1846c32fc00a5911 7659 openssl_3.0.18-1~deb12u2_armel-buildd.buildinfo
 9997d23784695c565a9f6309e0267485e46ee512 1392168 openssl_3.0.18-1~deb12u2_armel.deb
Checksums-Sha256:
 a882a7e738ef54790f6ffebc61aff71852f4dedbac26efa8e1e0cf3486f156c1 1178840 libcrypto3-udeb_3.0.18-1~deb12u2_armel.udeb
 54c838ba9fb72e31866e52008370b2e6657ad98d03a98add2d679640d2c5cfa1 2118576 libssl-dev_3.0.18-1~deb12u2_armel.deb
 0de26952659fc2c93ca429078cb11941cdbfbc61ed45af2ea82b21e2416ee060 4383700 libssl3-dbgsym_3.0.18-1~deb12u2_armel.deb
 5a46f8fc029657dfaffd7fa523b565ce2a4936d233dd5675feeb965639d022c6 186608 libssl3-udeb_3.0.18-1~deb12u2_armel.udeb
 02d09084b3ea713deadebed7eef1a056f114c36305f7e2616debfdbba3fe9cce 1639276 libssl3_3.0.18-1~deb12u2_armel.deb
 7b194ad2ef5141044e61b2db76fa6f32222615558f4e28c8cf580310465b8cfb 650032 openssl-dbgsym_3.0.18-1~deb12u2_armel.deb
 40bd85bc0e88db1b46d0c485e40f04e7fe0e6b9b85882f128d5fc6bd69e5f072 7659 openssl_3.0.18-1~deb12u2_armel-buildd.buildinfo
 bb309e92a88d88f6af8b6df6a1d9d0cbe7d755ec0326a123b0c40ba1cec456f1 1392168 openssl_3.0.18-1~deb12u2_armel.deb
Files:
 383df3d9c3d0f98401627c651cfa4709 1178840 debian-installer optional libcrypto3-udeb_3.0.18-1~deb12u2_armel.udeb
 0654fce1998d6435a0d98430ede114d7 2118576 libdevel optional libssl-dev_3.0.18-1~deb12u2_armel.deb
 68574c7c23175f60154f21694a059648 4383700 debug optional libssl3-dbgsym_3.0.18-1~deb12u2_armel.deb
 a4b4415853e1ee2467b75e4c4797485e 186608 debian-installer optional libssl3-udeb_3.0.18-1~deb12u2_armel.udeb
 97f527c67f810160cffc552cb25951e8 1639276 libs optional libssl3_3.0.18-1~deb12u2_armel.deb
 0459acfb7d4684bde184a8d2b5b82872 650032 debug optional openssl-dbgsym_3.0.18-1~deb12u2_armel.deb
 4aa2fea4cba8b6efd2a6da7896254782 7659 utils optional openssl_3.0.18-1~deb12u2_armel-buildd.buildinfo
 e5f9cc3486f3a4bc585adff4a1c5bdd4 1392168 utils optional openssl_3.0.18-1~deb12u2_armel.deb

-----BEGIN PGP SIGNATURE-----
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=860v
-----END PGP SIGNATURE-----