-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 06 Jun 2026 21:56:20 +0200
Source: openssl
Binary: libcrypto3-udeb libssl-dev libssl3 libssl3-dbgsym libssl3-udeb openssl openssl-dbgsym
Architecture: mips64el
Version: 3.0.20-1~deb12u2
Distribution: bookworm-security
Urgency: medium
Maintainer: mipsel Build Daemon (mipsel-osuosl-03) <buildd_mips64el-mipsel-osuosl-03@buildd.debian.org>
Changed-By: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
Description:
 libcrypto3-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl3    - Secure Sockets Layer toolkit - shared libraries
 libssl3-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (3.0.20-1~deb12u2) bookworm-security; urgency=medium
 .
   * CVE-2026-7383 ("Possible Heap Buffer Overflow in ASN.1 Multibyte String
     Conversion")
   * CVE-2026-9076 ("Out-of-Bounds Read in CMS Password-Based Decryption")
   * CVE-2026-34180 ("Heap Buffer Over-read in ASN.1 Content Parsing")
   * CVE-2026-34182 ("CMS AuthEnvelopedData Processing May Accept Forged
     Messages")
   * CVE-2026-42766 ("Possible NULL Dereference in Password-Based CMS
     Decryption")
   * CVE-2026-42770 ("FFC-DH Peer Validation Uses Attacker-Supplied q")
   * CVE-2026-45445 ("AES-OCB IV Ignored on EVP_Cipher() Path")
   * CVE-2026-45446 ("Incorrect Tag Processing for Empty Messages in
     AES-GCM-SIV and AES-SIV modes")
   * CVE-2026-45447 ("Heap Use-After-Free in OpenSSL PKCS7_verify()")
Checksums-Sha1:
 3360c269e797549f57f65b3a5955bdbf84ab80d2 1036012 libcrypto3-udeb_3.0.20-1~deb12u2_mips64el.udeb
 aff4b41287db12aee8f5576775d6193527211a9b 2318928 libssl-dev_3.0.20-1~deb12u2_mips64el.deb
 0826b8533f06ee526eb14418990d73a374ff7f04 4717192 libssl3-dbgsym_3.0.20-1~deb12u2_mips64el.deb
 9a0fa1c4edf554e3d500cc6fd3c72063e1fb9d1e 184372 libssl3-udeb_3.0.20-1~deb12u2_mips64el.udeb
 5be6ed2a021f2b39e117f49ecc6983048ac32f20 1500920 libssl3_3.0.20-1~deb12u2_mips64el.deb
 d59e566406641903af920fe75c1a4913dd63481a 709804 openssl-dbgsym_3.0.20-1~deb12u2_mips64el.deb
 bba22a14ba5ae4386eb6564936315472e61f7f63 7675 openssl_3.0.20-1~deb12u2_mips64el-buildd.buildinfo
 4572257899c4feb78b840a1cecfa7d2ba250445b 1391804 openssl_3.0.20-1~deb12u2_mips64el.deb
Checksums-Sha256:
 e37025b325268c700880d527b323c1e4e5adf6b3ee68e8f7e0656dca5a182fff 1036012 libcrypto3-udeb_3.0.20-1~deb12u2_mips64el.udeb
 0c2f0580f609980e40e6fece8168128c86eda873dc66fa9e15574f16d12ff7d0 2318928 libssl-dev_3.0.20-1~deb12u2_mips64el.deb
 093b4379b1aaf9e10fa6344d3ca72c4a97eaa9f040feb7f075a87421bc246a7c 4717192 libssl3-dbgsym_3.0.20-1~deb12u2_mips64el.deb
 dad4896a1d3020c0121fa4d5dd4691696369e701267cb67684aeee250c32f0f6 184372 libssl3-udeb_3.0.20-1~deb12u2_mips64el.udeb
 17c44816d6e21c93b49df19b20d1268310453db02a1985a4c8974be4ebd2aff1 1500920 libssl3_3.0.20-1~deb12u2_mips64el.deb
 5743f2be6c8c20614916aea0bd210cde71a057d0434a9bf1ab3aa0146c1097a9 709804 openssl-dbgsym_3.0.20-1~deb12u2_mips64el.deb
 7881fce412d8a0feff7560329de5afbd5cc69a7fb7a6829811619f33fd30c75c 7675 openssl_3.0.20-1~deb12u2_mips64el-buildd.buildinfo
 71709f7ca1b16aa2562daf6601087859343261f39285bf75ee417e8d69227813 1391804 openssl_3.0.20-1~deb12u2_mips64el.deb
Files:
 1534e4f31e6759352120dac62715cce0 1036012 debian-installer optional libcrypto3-udeb_3.0.20-1~deb12u2_mips64el.udeb
 9293bad097e64b70cc742035b0844731 2318928 libdevel optional libssl-dev_3.0.20-1~deb12u2_mips64el.deb
 8cfda0a14bad5f07a91608b77a57c985 4717192 debug optional libssl3-dbgsym_3.0.20-1~deb12u2_mips64el.deb
 e315c86be7192db7b2154b29f5ff8a1b 184372 debian-installer optional libssl3-udeb_3.0.20-1~deb12u2_mips64el.udeb
 1ccee24a976c7c99aa1ffadd99a35f8e 1500920 libs optional libssl3_3.0.20-1~deb12u2_mips64el.deb
 307888ca274c1712b7ab3383c2b3f5d4 709804 debug optional openssl-dbgsym_3.0.20-1~deb12u2_mips64el.deb
 1494495fb8552db36a48e915200f37ab 7675 utils optional openssl_3.0.20-1~deb12u2_mips64el-buildd.buildinfo
 7ae53cd454df0235f77c1073d4888553 1391804 utils optional openssl_3.0.20-1~deb12u2_mips64el.deb

-----BEGIN PGP SIGNATURE-----
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=0AhR
-----END PGP SIGNATURE-----