-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 06 Jun 2026 21:55:35 +0200
Source: openssl
Binary: libcrypto3-udeb libssl-dev libssl3-udeb libssl3t64 libssl3t64-dbgsym openssl openssl-dbgsym openssl-provider-fips openssl-provider-fips-dbgsym openssl-provider-legacy openssl-provider-legacy-dbgsym
Architecture: s390x
Version: 3.5.6-1~deb13u2
Distribution: trixie-security
Urgency: medium
Maintainer: s390x Build Daemon (zandonai) <buildd_s390x-zandonai@buildd.debian.org>
Changed-By: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
Description:
 libcrypto3-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl3-udeb - ssl shared library - udeb (udeb)
 libssl3t64 - Secure Sockets Layer toolkit - shared libraries
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
 openssl-provider-fips - Secure Sockets Layer toolkit - cryptographic utility
 openssl-provider-legacy - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (3.5.6-1~deb13u2) trixie-security; urgency=medium
 .
   * CVE-2026-7383 ("Possible Heap Buffer Overflow in ASN.1 Multibyte String
     Conversion")
   * CVE-2026-9076 ("Out-of-Bounds Read in CMS Password-Based Decryption")
   * CVE-2026-34180 ("Heap Buffer Over-read in ASN.1 Content Parsing")
   * CVE-2026-34181 ("PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC
     Keys")
   * CVE-2026-34182 ("CMS AuthEnvelopedData Processing May Accept Forged
     Messages")
   * CVE-2026-34183 ("Unbounded Memory Growth in the QUIC PATH_CHALLENGE
     Handler")
   * CVE-2026-42764 ("NULL pointer dereference in QUIC server initial packet
     handling")
   * CVE-2026-42766 ("Possible NULL Dereference in Password-Based CMS
     Decryption")
   * CVE-2026-42767 ("NULL Pointer Dereference in CRMF EncryptedValue
     Decryption")
   * CVE-2026-42768 ("Multi-RecipientInfo Bleichenbacher Oracle in
     CMS_decrypt() and PKCS7_decrypt()")
   * CVE-2026-42769 ("Trust-Anchor Substitution via cert/issuer Typo in CMP
     rootCaKeyUpdate")
   * CVE-2026-42770 ("FFC-DH Peer Validation Uses Attacker-Supplied q")
   * CVE-2026-45445 ("AES-OCB IV Ignored on EVP_Cipher() Path")
   * CVE-2026-45446 ("Incorrect Tag Processing for Empty Messages in
     AES-GCM-SIV and AES-SIV modes")
   * CVE-2026-45447 ("Heap Use-After-Free in OpenSSL PKCS7_verify()")
Checksums-Sha1:
 0acaef38569e8a279ee0afa1ccbad2514132a6d0 1601144 libcrypto3-udeb_3.5.6-1~deb13u2_s390x.udeb
 db90119cfbecf7dc6b23947ae9fc8feb21c7bb21 2566452 libssl-dev_3.5.6-1~deb13u2_s390x.deb
 08466c35ba9af588cc00bbf463c83fd88194285d 348852 libssl3-udeb_3.5.6-1~deb13u2_s390x.udeb
 b436a18ccb01ee6672f808228abf402b8ea2c24d 5921184 libssl3t64-dbgsym_3.5.6-1~deb13u2_s390x.deb
 7fad6bd2432b34ecd1cd72515d6c2468608012e7 2040984 libssl3t64_3.5.6-1~deb13u2_s390x.deb
 aec7dda4b1cc4834e2c0c1691d79681894a018c1 755712 openssl-dbgsym_3.5.6-1~deb13u2_s390x.deb
 87c655d8cabaa794cf99875bec1ec70e5c8b41dd 1595096 openssl-provider-fips-dbgsym_3.5.6-1~deb13u2_s390x.deb
 225f59535e07025b9d1ab29a5e02d24892f288dd 787620 openssl-provider-fips_3.5.6-1~deb13u2_s390x.deb
 84d2b03422cadac9c208269c02b811a1f9fc561d 96568 openssl-provider-legacy-dbgsym_3.5.6-1~deb13u2_s390x.deb
 33720bb784e9f6941a08b236a2856463f5697f8a 310348 openssl-provider-legacy_3.5.6-1~deb13u2_s390x.deb
 9a0880175d2811dbe6a342bbc10125734afb8ccb 8669 openssl_3.5.6-1~deb13u2_s390x-buildd.buildinfo
 0ea491dc74df50af1a0b9a3da50e20e6787ef074 1491156 openssl_3.5.6-1~deb13u2_s390x.deb
Checksums-Sha256:
 4465a6d4d634694b3fbdab6ea4fe3a23410ab703f93db0fd20d8d82c40538135 1601144 libcrypto3-udeb_3.5.6-1~deb13u2_s390x.udeb
 41b4466ecbb3f53b4baf26fcccc489f998ebb74f8c7797e091f3ddf1330a83b8 2566452 libssl-dev_3.5.6-1~deb13u2_s390x.deb
 4a4c24594c4368f640dab68285a8d17860a12bd8ebef972fa5be5447aa6185f9 348852 libssl3-udeb_3.5.6-1~deb13u2_s390x.udeb
 0c6ac658ee122ee2db9cf680fc86d4f1294011277de4e9e905e3d5ce6e5508a7 5921184 libssl3t64-dbgsym_3.5.6-1~deb13u2_s390x.deb
 3bd296eacd0e6fa86066146b9635b9367a714bf0eadbfcdfc5c78188bf33ccd1 2040984 libssl3t64_3.5.6-1~deb13u2_s390x.deb
 368a961094b886c0279ab02fde38b7b9bc46af9d430cd4856423f13a8e98ca63 755712 openssl-dbgsym_3.5.6-1~deb13u2_s390x.deb
 7307f1c42e85a8a6a27331efbe20b73a0a71803244dcc4ea2178a7b2c3355f82 1595096 openssl-provider-fips-dbgsym_3.5.6-1~deb13u2_s390x.deb
 d81f30e82180a254efae44610dc690d555f211bca0b19e7db2b3407a8354fb8b 787620 openssl-provider-fips_3.5.6-1~deb13u2_s390x.deb
 9508a06ea9cd4621bb881e731965303595a1f3e4a2a1864718784a87d638122f 96568 openssl-provider-legacy-dbgsym_3.5.6-1~deb13u2_s390x.deb
 95aeeebe4e52ef554688fe30dbe1c890e42c3975f0bc2ec9698e1778f5a6d131 310348 openssl-provider-legacy_3.5.6-1~deb13u2_s390x.deb
 20167fe937231299f9c0a8fdd10acd99f83fe6d917d1fbf535902d676b0b373e 8669 openssl_3.5.6-1~deb13u2_s390x-buildd.buildinfo
 a999ae41efb28c186fb0044ab477f9ef66f5e7efc3309d671162b7b8aaaa5921 1491156 openssl_3.5.6-1~deb13u2_s390x.deb
Files:
 cf2c2e49cd3c50b80004cb989ec2936f 1601144 debian-installer optional libcrypto3-udeb_3.5.6-1~deb13u2_s390x.udeb
 fb7f1b410243b5db616a5837f0a570ed 2566452 libdevel optional libssl-dev_3.5.6-1~deb13u2_s390x.deb
 49e8f145e8999dd958c87e4f8f18e6da 348852 debian-installer optional libssl3-udeb_3.5.6-1~deb13u2_s390x.udeb
 01fce5af9371e245f4dc26c299442d92 5921184 debug optional libssl3t64-dbgsym_3.5.6-1~deb13u2_s390x.deb
 ddef5d92ac5e4d6b52da9b8ba00fa197 2040984 libs optional libssl3t64_3.5.6-1~deb13u2_s390x.deb
 5b5e92d396176fe049764717ac14c352 755712 debug optional openssl-dbgsym_3.5.6-1~deb13u2_s390x.deb
 1a89307da26d89cd2efe23c31474ac0a 1595096 debug optional openssl-provider-fips-dbgsym_3.5.6-1~deb13u2_s390x.deb
 467f8bb7b8cf57cad3fd793d8db1f41b 787620 utils optional openssl-provider-fips_3.5.6-1~deb13u2_s390x.deb
 a336dfce54679833d50c821b7cbbad1b 96568 debug optional openssl-provider-legacy-dbgsym_3.5.6-1~deb13u2_s390x.deb
 31640e42cd4160403386f3ef5aaece83 310348 utils optional openssl-provider-legacy_3.5.6-1~deb13u2_s390x.deb
 08727fcb74c2c8bb0f599a817fc0d594 8669 utils optional openssl_3.5.6-1~deb13u2_s390x-buildd.buildinfo
 41f5751b1525cba15134ae10ef507b6a 1491156 utils optional openssl_3.5.6-1~deb13u2_s390x.deb

-----BEGIN PGP SIGNATURE-----
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=s8/v
-----END PGP SIGNATURE-----