-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 06 Jun 2026 21:56:20 +0200 Source: openssl Binary: libcrypto3-udeb libssl-dev libssl3 libssl3-dbgsym libssl3-udeb openssl openssl-dbgsym Architecture: arm64 Version: 3.0.20-1~deb12u2 Distribution: bookworm-security Urgency: medium Maintainer: arm64 Build Daemon (arm-conova-04) Changed-By: Sebastian Andrzej Siewior Description: libcrypto3-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb) libssl-dev - Secure Sockets Layer toolkit - development files libssl3 - Secure Sockets Layer toolkit - shared libraries libssl3-udeb - ssl shared library - udeb (udeb) openssl - Secure Sockets Layer toolkit - cryptographic utility Changes: openssl (3.0.20-1~deb12u2) bookworm-security; urgency=medium . * CVE-2026-7383 ("Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion") * CVE-2026-9076 ("Out-of-Bounds Read in CMS Password-Based Decryption") * CVE-2026-34180 ("Heap Buffer Over-read in ASN.1 Content Parsing") * CVE-2026-34182 ("CMS AuthEnvelopedData Processing May Accept Forged Messages") * CVE-2026-42766 ("Possible NULL Dereference in Password-Based CMS Decryption") * CVE-2026-42770 ("FFC-DH Peer Validation Uses Attacker-Supplied q") * CVE-2026-45445 ("AES-OCB IV Ignored on EVP_Cipher() Path") * CVE-2026-45446 ("Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes") * CVE-2026-45447 ("Heap Use-After-Free in OpenSSL PKCS7_verify()") Checksums-Sha1: 98643f09dc54a4043c2723561ab631e714d91799 1345940 libcrypto3-udeb_3.0.20-1~deb12u2_arm64.udeb 89583d3b1ae6fdddb1d9e9d06aeb60892b7165b6 2312256 libssl-dev_3.0.20-1~deb12u2_arm64.deb b417781a3ef72d55ae498dbaf5d1232cf5ffc7fa 4515228 libssl3-dbgsym_3.0.20-1~deb12u2_arm64.deb cd4a0a6f13567d06bbd937561692f092b89e3495 201232 libssl3-udeb_3.0.20-1~deb12u2_arm64.udeb c6d08474c5ff4869f292c10d2d419b9dca08e921 1823624 libssl3_3.0.20-1~deb12u2_arm64.deb a9b425ed204f84d9e8a77fd216b3977cf3998e78 684584 openssl-dbgsym_3.0.20-1~deb12u2_arm64.deb 2a8a11a271bee7361121cd77aec5800425199257 7841 openssl_3.0.20-1~deb12u2_arm64-buildd.buildinfo 0d579783792f3fd0c34e59602511e07d746e275c 1405164 openssl_3.0.20-1~deb12u2_arm64.deb Checksums-Sha256: e93921e4a9cb72e2648c31b9d8accb8c4eed939b6868d432b98fb5721d96843c 1345940 libcrypto3-udeb_3.0.20-1~deb12u2_arm64.udeb c6941a83bebd83d2a1cd2db56418062d8f48b3200786aacafa194b75a93a3702 2312256 libssl-dev_3.0.20-1~deb12u2_arm64.deb 5d4909210a2d629ac082f7b114835eb0e1aa135e1fde19d923d32ec88bc4fc12 4515228 libssl3-dbgsym_3.0.20-1~deb12u2_arm64.deb 1a1fcc4da12a79059218e4251e8e17e6cde12bdca3fda85e69d7dc5ac1b27824 201232 libssl3-udeb_3.0.20-1~deb12u2_arm64.udeb a256e03cc3abd7243ac5c6ee91a9deb56478221ef0d3c2b0748551e13140c0bf 1823624 libssl3_3.0.20-1~deb12u2_arm64.deb fd1846450d4bf1cdaf4775d8366613c8934bc668d60168a9a4b86f314ad7a64f 684584 openssl-dbgsym_3.0.20-1~deb12u2_arm64.deb 8d398365d86eba574efe552ef803dd5e745904d9c2d055cfa02bda4625b4c8b1 7841 openssl_3.0.20-1~deb12u2_arm64-buildd.buildinfo e7ba824de1e659c12e81f885bc0757a50c4d7a9f71de02687ad63d5a9e936e00 1405164 openssl_3.0.20-1~deb12u2_arm64.deb Files: e057369c4b0f6390093404f5cd1ae572 1345940 debian-installer optional libcrypto3-udeb_3.0.20-1~deb12u2_arm64.udeb fa5cfb2a9f9490f3ef8b1f8cb856045f 2312256 libdevel optional libssl-dev_3.0.20-1~deb12u2_arm64.deb 6bde9292a7bbf7481d70ed41710aec1e 4515228 debug optional libssl3-dbgsym_3.0.20-1~deb12u2_arm64.deb 47173bc95d095001e2e5365bb483d777 201232 debian-installer optional libssl3-udeb_3.0.20-1~deb12u2_arm64.udeb c07bef854bb452ba370a0d9160141caf 1823624 libs optional libssl3_3.0.20-1~deb12u2_arm64.deb 1fca60a3ddf47eefa4e893ef2c62f8e4 684584 debug optional openssl-dbgsym_3.0.20-1~deb12u2_arm64.deb 4bede2f0a5467585cdc91982bbacb15a 7841 utils optional openssl_3.0.20-1~deb12u2_arm64-buildd.buildinfo 14fb9155932b8601f702d55383271cfb 1405164 utils optional openssl_3.0.20-1~deb12u2_arm64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEYxmcRLDHP0tCCM0oScpU3dYulLgFAmoknDIACgkQScpU3dYu lLjupQ/7BEsjHK6bl8jXmNpAVpBimV1lWLqOySx9GH0H+3ApFZgcSi3t/YGvmKPu MCqcLhm4S71YRpYDSN39THHlo+q0Sg/a1OxUgvuGBG9pYjkl/etPnUPmytt5oXMu 4087vGVXDh7ZNCJ3D6neAXk/r3KZi2eDgwcNaPNvVszwUDuUhL+GBVEDCHyJuz43 su3UrPpg24MhZ0fuNl4gKesnygqANxhSmCgYCg95tc6kmNWYVzCMr7O454HhQjDJ 7+aS+Foh/fgr5d1a48Ew/895hPp16VcloQNfQFiAT48VHe1K4hS2b8edibzE1h+N 1uM1Z6gCawOwN1dVAAfFtO2yZ9x47eGZT1Jzaxl9OrtswySBkrL6lLawl9frvDGV +fUnt8imHwYymMggDv2MGA1D73Q8rO9uW5laReMcPkrL/k4Oa+/aNcPhZqcIRfIj 3Wf2uEl0SLiIc6SbovIyFAYsXd32aBJvRYV1ArjuMimpFopLd/tYPdyXWrj3z/7W 8S5ELH8MxJl/VNjj/49GMPEa4alLDe9dufro3yhd+QaeMASt1j/gUHiP0FuLGIOa R6C0HST4EUboJPpusc0/ZTKH8nwno5Xza3Ex7p/O+U3yKJj8XN2Xz10wS6jlpF4A sPPpUw8JAPdVZv43gTNa83Jh7anBMiJaudpJ63ZIBBQhyLTo6i4= =elj1 -----END PGP SIGNATURE-----