-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 24 Jan 2026 16:01:59 +0100
Source: openssl
Binary: libcrypto3-udeb libssl-dev libssl3 libssl3-dbgsym libssl3-udeb openssl openssl-dbgsym
Architecture: armhf
Version: 3.0.18-1~deb12u2
Distribution: bookworm-security
Urgency: medium
Maintainer: arm Build Daemon (arm-ubc-06) <buildd_arm64-arm-ubc-06@buildd.debian.org>
Changed-By: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
Description:
 libcrypto3-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl3    - Secure Sockets Layer toolkit - shared libraries
 libssl3-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (3.0.18-1~deb12u2) bookworm-security; urgency=medium
 .
   * CVE-2025-15467 (Stack buffer overflow in CMS AuthEnvelopedData parsing)
   * CVE-2025-68160 (Heap out-of-bounds write in BIO_f_linebuffer on short
     writes)
   * CVE-2025-69418 (Unauthenticated/unencrypted trailing bytes with low-level
     OCB function calls)
   * CVE-2025-69419 (Out of bounds write in PKCS12_get_friendlyname() UTF-8
     conversion)
   * CVE-2025-69420 (Missing ASN1_TYPE validation in TS_RESP_verify_response()
     function)
   * CVE-2025-69421 (NULL Pointer Dereference in PKCS12_item_decrypt_d2i_ex
     function)
   * CVE-2026-22795 (Missing ASN1_TYPE validation in PKCS#12 parsing)
   * CVE-2026-22796 (ASN1_TYPE Type Confusion in the
     PKCS7_digest_from_attributes() function)
Checksums-Sha1:
 f9695d67beb359978974a48dd66e8a270923fbd4 1214172 libcrypto3-udeb_3.0.18-1~deb12u2_armhf.udeb
 b224527b21aa3ea4699d5a9ef1e7588c46144928 2146244 libssl-dev_3.0.18-1~deb12u2_armhf.deb
 77639c1f0e62c2221bc68f65eecaa1702f9d2b8b 4476996 libssl3-dbgsym_3.0.18-1~deb12u2_armhf.deb
 8c5b52de518c390c861cc2789cadbefa0f0365ad 186768 libssl3-udeb_3.0.18-1~deb12u2_armhf.udeb
 70645f0a3cd03e038f83f62036b2e519a76f228c 1674036 libssl3_3.0.18-1~deb12u2_armhf.deb
 2456bd130c6cc62750a4edadaa23b28ead8178ec 661136 openssl-dbgsym_3.0.18-1~deb12u2_armhf.deb
 b12c159f4744bfcd801d9421496a1cf4f930b60d 7661 openssl_3.0.18-1~deb12u2_armhf-buildd.buildinfo
 7ee81a17d69a296a36f98bbdf422c840de04a455 1398764 openssl_3.0.18-1~deb12u2_armhf.deb
Checksums-Sha256:
 683dd4aadbb974910ccccbf614d2ad7189235ad98bad856663a1632d1e948599 1214172 libcrypto3-udeb_3.0.18-1~deb12u2_armhf.udeb
 8b1d7e0175f748f8d091d9c7a31e98d0686e82f0cd863483db4aa67abd43087a 2146244 libssl-dev_3.0.18-1~deb12u2_armhf.deb
 f833b87450243454e3d955e3c0699039b4f86a589a69f5b16089139040ec4709 4476996 libssl3-dbgsym_3.0.18-1~deb12u2_armhf.deb
 0d3433a73bd76605c2b716e84f199daefd2207a534da2b137de953906f0b1e91 186768 libssl3-udeb_3.0.18-1~deb12u2_armhf.udeb
 954b6ba96d28e9659e4049de09ff56aee9d7b16e9f2c94577e22907a4c3b4085 1674036 libssl3_3.0.18-1~deb12u2_armhf.deb
 769eb93a537a2c2d6fcddc18b2b72274221cd7fb9db94f4b282e9ef79493d022 661136 openssl-dbgsym_3.0.18-1~deb12u2_armhf.deb
 90339d9e24ec5f5dcd232acb4a9829dbaa254159db05c2d205ce93d0f8312324 7661 openssl_3.0.18-1~deb12u2_armhf-buildd.buildinfo
 f7e9348d0edc740f1b1dee053414b24f99f40d6db76b93b4db0b2af45a5d8a06 1398764 openssl_3.0.18-1~deb12u2_armhf.deb
Files:
 89f7577b2373c8da39f049eaaaabbd7e 1214172 debian-installer optional libcrypto3-udeb_3.0.18-1~deb12u2_armhf.udeb
 9fcb0cd8070ec6a0d63703074fa070a5 2146244 libdevel optional libssl-dev_3.0.18-1~deb12u2_armhf.deb
 c001d057204a759773a048c52ba68747 4476996 debug optional libssl3-dbgsym_3.0.18-1~deb12u2_armhf.deb
 f322c4f110cb479025d1fda68db9b92e 186768 debian-installer optional libssl3-udeb_3.0.18-1~deb12u2_armhf.udeb
 db1f285e858a7ad4c4da92a7da654550 1674036 libs optional libssl3_3.0.18-1~deb12u2_armhf.deb
 bcf8be606cfd31f95951113dfaa5dba3 661136 debug optional openssl-dbgsym_3.0.18-1~deb12u2_armhf.deb
 4df1271c2aad0c9d176c79a80ae9a160 7661 utils optional openssl_3.0.18-1~deb12u2_armhf-buildd.buildinfo
 1f1baa0858b414fd15b80d71bb963ae4 1398764 utils optional openssl_3.0.18-1~deb12u2_armhf.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEpxWVfktWxVoKRwGgJ7tNDw2WyRsFAml0+fsACgkQJ7tNDw2W
yRt0oRAAuKWj/sCIw8lJhmDI9sV87Cq2EWeP63JcX1cgEWjQoqZ5eCPSIMGEENZ0
9m3kHwEdRxuekkXlPhnO2MgPW/6R8EVZRhChbg8QSkNkgAjnjxyrRoFV923MHfCb
NLKb+BI6HIivkGKERSutZefxxqitE2gNDNYf7IAL2K/+iW3BrvC44zi0RgxkGMVW
Ct4+Wt+95tGC5gLf/C31YrCNjz0Zb6fGdVwE0XLelyAGLXVZR9AbrtyKAQOi+M8y
8CGaO3fD3bK5IDVaVsOsS+j5Sz1ErgVY6WWyIBCRoDHNva4gPo3Z+RFu2tHN37jA
IXjy6y7KrImmokZNUDsZX0FZmKIXixJb7XwbrhRh0o4uMY3juUEGPs9zftI90Wy3
zK86dRSGpmZs4FT+rgtFc/oE0oqYY+Pu78jY0f14ft/RSXZFHSeAtDTn0j+hgrNm
2pZJhn/AGk/z6TWFUmAVXJMNMArOElUqPBeDL+Nc6ZyRLvKdRCKknVngvyG9AJR5
oBXzAilz4DDbhiqmkyVXqs6s1bo+lpke87xAf2Nt2B+FD+E7LiT+EYug84fMawcu
B9y6kJXDNwtP2V3SBODNwSvvuYh6u+5M6p7OsL2674IRG3bOsyjLrMFyj31csTO8
3DmR8W4/UBUSxHE4LHljNPfdyg1wl9jPhVRJn+tZBI/SxJuEMG4=
=i6GS
-----END PGP SIGNATURE-----