-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 24 Jan 2026 16:01:59 +0100
Source: openssl
Binary: libcrypto3-udeb libssl-dev libssl3 libssl3-dbgsym libssl3-udeb openssl openssl-dbgsym
Architecture: arm64
Version: 3.0.18-1~deb12u2
Distribution: bookworm-security
Urgency: medium
Maintainer: arm Build Daemon (arm-ubc-02) <buildd_arm64-arm-ubc-02@buildd.debian.org>
Changed-By: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
Description:
 libcrypto3-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl3    - Secure Sockets Layer toolkit - shared libraries
 libssl3-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (3.0.18-1~deb12u2) bookworm-security; urgency=medium
 .
   * CVE-2025-15467 (Stack buffer overflow in CMS AuthEnvelopedData parsing)
   * CVE-2025-68160 (Heap out-of-bounds write in BIO_f_linebuffer on short
     writes)
   * CVE-2025-69418 (Unauthenticated/unencrypted trailing bytes with low-level
     OCB function calls)
   * CVE-2025-69419 (Out of bounds write in PKCS12_get_friendlyname() UTF-8
     conversion)
   * CVE-2025-69420 (Missing ASN1_TYPE validation in TS_RESP_verify_response()
     function)
   * CVE-2025-69421 (NULL Pointer Dereference in PKCS12_item_decrypt_d2i_ex
     function)
   * CVE-2026-22795 (Missing ASN1_TYPE validation in PKCS#12 parsing)
   * CVE-2026-22796 (ASN1_TYPE Type Confusion in the
     PKCS7_digest_from_attributes() function)
Checksums-Sha1:
 a6d06bf1105ccd088c6a42835a5b934b5c53eb74 1340352 libcrypto3-udeb_3.0.18-1~deb12u2_arm64.udeb
 7ea633f2c2d62ac6c46495ddcd00ff4e41e1f3c8 2313744 libssl-dev_3.0.18-1~deb12u2_arm64.deb
 aca2070e6a7e1b0ebc8f8b40448ffafe1a9e12b4 4515040 libssl3-dbgsym_3.0.18-1~deb12u2_arm64.deb
 1d34ccc7482111a9bab64c9b69770749538d0bd5 201168 libssl3-udeb_3.0.18-1~deb12u2_arm64.udeb
 482b1ecf09c636a39c7fdc578cafbcf9f6ac969a 1818192 libssl3_3.0.18-1~deb12u2_arm64.deb
 53863964ea38b50b79df916082778ee261636bf4 685200 openssl-dbgsym_3.0.18-1~deb12u2_arm64.deb
 9537f233d3d8c6f9dd0049bc5a1a14c8777a8219 7817 openssl_3.0.18-1~deb12u2_arm64-buildd.buildinfo
 fd81466fdbc3dc4d1a2fe6e99d40813630070aa9 1398516 openssl_3.0.18-1~deb12u2_arm64.deb
Checksums-Sha256:
 71b1aadc0d1ef32bd15661f1387a8230c38112e3bbaa6b3388b07dc2c02dae54 1340352 libcrypto3-udeb_3.0.18-1~deb12u2_arm64.udeb
 2f6ae50ff7fca08c1a02c28052462d2598e2c4bf88224dda9e53b1d033dd6c29 2313744 libssl-dev_3.0.18-1~deb12u2_arm64.deb
 12c2950a423376a90737eef5c5a8c6b312a238d9a23cc9c782780198345af84a 4515040 libssl3-dbgsym_3.0.18-1~deb12u2_arm64.deb
 ca6ed6594bfbf63f6c1d6c5d6df1a04bac092c5eca79ccb6bba3fdc76a910eec 201168 libssl3-udeb_3.0.18-1~deb12u2_arm64.udeb
 30b2d6c27fd4a2f5ef554ac3b86c96e8a3abbbfb454c6dbe7e308ce9df36f8c5 1818192 libssl3_3.0.18-1~deb12u2_arm64.deb
 b9aba32b0a0b5c2489de46b57329658859b3b483cc4c52597cbb5fb788c0e65b 685200 openssl-dbgsym_3.0.18-1~deb12u2_arm64.deb
 2375a73e48fd2f0c1ea1b1f30a40f0ab92db4438d7d30db05550bfa2356c021c 7817 openssl_3.0.18-1~deb12u2_arm64-buildd.buildinfo
 ed4671eb9fcc282b69c9768863f2df0386664d686bb3103d5397802f9c0b1297 1398516 openssl_3.0.18-1~deb12u2_arm64.deb
Files:
 bfe8268947a322a6d8f0e09bbcf9b1ae 1340352 debian-installer optional libcrypto3-udeb_3.0.18-1~deb12u2_arm64.udeb
 2550b0fada5dffb9db9963ce59b2bf78 2313744 libdevel optional libssl-dev_3.0.18-1~deb12u2_arm64.deb
 20b5f36431d0359b44140136947fbbcb 4515040 debug optional libssl3-dbgsym_3.0.18-1~deb12u2_arm64.deb
 c779502ad07b804cc692a8859d193b14 201168 debian-installer optional libssl3-udeb_3.0.18-1~deb12u2_arm64.udeb
 d451ad9507c61349e2e812fc7bc3918d 1818192 libs optional libssl3_3.0.18-1~deb12u2_arm64.deb
 906b8dcd81dcde4aaccd386c47eb80e5 685200 debug optional openssl-dbgsym_3.0.18-1~deb12u2_arm64.deb
 9f4ba3847f9f1afda72d45c8e3d11d2b 7817 utils optional openssl_3.0.18-1~deb12u2_arm64-buildd.buildinfo
 8291c2bf7792a1bab16a7f14fb9eb4af 1398516 utils optional openssl_3.0.18-1~deb12u2_arm64.deb

-----BEGIN PGP SIGNATURE-----
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=7x5g
-----END PGP SIGNATURE-----