-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 24 Jan 2026 16:01:59 +0100
Source: openssl
Binary: libcrypto3-udeb libssl-dev libssl3 libssl3-dbgsym libssl3-udeb openssl openssl-dbgsym
Architecture: s390x
Version: 3.0.18-1~deb12u2
Distribution: bookworm-security
Urgency: medium
Maintainer: s390x Build Daemon (zandonai) <buildd_s390x-zandonai@buildd.debian.org>
Changed-By: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
Description:
 libcrypto3-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl3    - Secure Sockets Layer toolkit - shared libraries
 libssl3-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (3.0.18-1~deb12u2) bookworm-security; urgency=medium
 .
   * CVE-2025-15467 (Stack buffer overflow in CMS AuthEnvelopedData parsing)
   * CVE-2025-68160 (Heap out-of-bounds write in BIO_f_linebuffer on short
     writes)
   * CVE-2025-69418 (Unauthenticated/unencrypted trailing bytes with low-level
     OCB function calls)
   * CVE-2025-69419 (Out of bounds write in PKCS12_get_friendlyname() UTF-8
     conversion)
   * CVE-2025-69420 (Missing ASN1_TYPE validation in TS_RESP_verify_response()
     function)
   * CVE-2025-69421 (NULL Pointer Dereference in PKCS12_item_decrypt_d2i_ex
     function)
   * CVE-2026-22795 (Missing ASN1_TYPE validation in PKCS#12 parsing)
   * CVE-2026-22796 (ASN1_TYPE Type Confusion in the
     PKCS7_digest_from_attributes() function)
Checksums-Sha1:
 c4308416ba0eee78df553b7f5f1f711c6b18dc33 1162988 libcrypto3-udeb_3.0.18-1~deb12u2_s390x.udeb
 76cfbf1223396fa49bb02dbb24798203f9b28c6d 2047396 libssl-dev_3.0.18-1~deb12u2_s390x.deb
 d4fee1367dd871f5d13fa76509ac4dc0ac2ec448 4458308 libssl3-dbgsym_3.0.18-1~deb12u2_s390x.deb
 f3d8b92aa534f7dae9ab948fac513db668869c1a 195804 libssl3-udeb_3.0.18-1~deb12u2_s390x.udeb
 35ca5f874689e8a0b9304dfa8362e8ba3cadebc0 1632260 libssl3_3.0.18-1~deb12u2_s390x.deb
 ac62e74a85b52f6178ff3406ff65c4afee69c1d3 665140 openssl-dbgsym_3.0.18-1~deb12u2_s390x.deb
 e80fa6405bfee44ab191756c2d396e4daa9bee3e 7689 openssl_3.0.18-1~deb12u2_s390x-buildd.buildinfo
 6669930647e30a1fc00384b1bd2572135d1bd06f 1408768 openssl_3.0.18-1~deb12u2_s390x.deb
Checksums-Sha256:
 54eed5fba3b16e564a4e08eca84e82c7d6fd2e27e3fe65fc6e069baaed66ee36 1162988 libcrypto3-udeb_3.0.18-1~deb12u2_s390x.udeb
 860ed0f12aca521b4bd9d775ca9f2e0b436e676497f05ebb647f7bd17c590949 2047396 libssl-dev_3.0.18-1~deb12u2_s390x.deb
 8e9313e3a8539e7dcfd548aa0c4e245a63f3ac2fd6f4eef0060b273cb77f61b3 4458308 libssl3-dbgsym_3.0.18-1~deb12u2_s390x.deb
 369b9f9fac98827ce5519b47c1a77f242d5f750f65ca01c0047b85b431dcbd58 195804 libssl3-udeb_3.0.18-1~deb12u2_s390x.udeb
 4880e9829cf618d54ed5c2662a6f9a0a3eaf021e2db4767e76eab5a95da6d023 1632260 libssl3_3.0.18-1~deb12u2_s390x.deb
 dcb23dce12dd170048939a5f99eea39a866745bf09ead3e0cedbc28c798c1bfd 665140 openssl-dbgsym_3.0.18-1~deb12u2_s390x.deb
 65b3fbee46846c17651a359c2a792565ade95a6d93d3c1e833ae87718f967c46 7689 openssl_3.0.18-1~deb12u2_s390x-buildd.buildinfo
 1f393115696962b061d47e82abcce6501d69e86a0e9cb81068b4a7454cd0f0ae 1408768 openssl_3.0.18-1~deb12u2_s390x.deb
Files:
 87c8641fcf9284295c49defc44b9cda6 1162988 debian-installer optional libcrypto3-udeb_3.0.18-1~deb12u2_s390x.udeb
 f636b34d736631d89de1e8e1ba42516a 2047396 libdevel optional libssl-dev_3.0.18-1~deb12u2_s390x.deb
 b39eb8d693d9669a06006489de5f7a82 4458308 debug optional libssl3-dbgsym_3.0.18-1~deb12u2_s390x.deb
 27612aba1b017c313ef2d7d243469963 195804 debian-installer optional libssl3-udeb_3.0.18-1~deb12u2_s390x.udeb
 5cd2e19ef92d7ddd2573a4164d6f0ef2 1632260 libs optional libssl3_3.0.18-1~deb12u2_s390x.deb
 f050050839929bf31f619cc3f96a89b9 665140 debug optional openssl-dbgsym_3.0.18-1~deb12u2_s390x.deb
 60b8d266a711b50a4153cc37851324c9 7689 utils optional openssl_3.0.18-1~deb12u2_s390x-buildd.buildinfo
 3f875dd1c5fc07426c1390a4f0a1301d 1408768 utils optional openssl_3.0.18-1~deb12u2_s390x.deb

-----BEGIN PGP SIGNATURE-----
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=uHBz
-----END PGP SIGNATURE-----