-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 24 Jan 2026 16:01:59 +0100
Source: openssl
Binary: libcrypto3-udeb libssl-dev libssl3 libssl3-dbgsym libssl3-udeb openssl openssl-dbgsym
Architecture: mipsel
Version: 3.0.18-1~deb12u2
Distribution: bookworm-security
Urgency: medium
Maintainer: mipsel Build Daemon (mipsel-osuosl-04) <buildd_mips64el-mipsel-osuosl-04@buildd.debian.org>
Changed-By: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
Description:
 libcrypto3-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl3    - Secure Sockets Layer toolkit - shared libraries
 libssl3-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (3.0.18-1~deb12u2) bookworm-security; urgency=medium
 .
   * CVE-2025-15467 (Stack buffer overflow in CMS AuthEnvelopedData parsing)
   * CVE-2025-68160 (Heap out-of-bounds write in BIO_f_linebuffer on short
     writes)
   * CVE-2025-69418 (Unauthenticated/unencrypted trailing bytes with low-level
     OCB function calls)
   * CVE-2025-69419 (Out of bounds write in PKCS12_get_friendlyname() UTF-8
     conversion)
   * CVE-2025-69420 (Missing ASN1_TYPE validation in TS_RESP_verify_response()
     function)
   * CVE-2025-69421 (NULL Pointer Dereference in PKCS12_item_decrypt_d2i_ex
     function)
   * CVE-2026-22795 (Missing ASN1_TYPE validation in PKCS#12 parsing)
   * CVE-2026-22796 (ASN1_TYPE Type Confusion in the
     PKCS7_digest_from_attributes() function)
Checksums-Sha1:
 85584a8167f4f3bc53a2446a8d8ce93126b1428f 1073424 libcrypto3-udeb_3.0.18-1~deb12u2_mipsel.udeb
 2838ebe581e8428adafe46d5903b13963592f5f3 2288452 libssl-dev_3.0.18-1~deb12u2_mipsel.deb
 fd4b154a56d6d1d7ce263d2fc1c5ee7ace0241d9 4625864 libssl3-dbgsym_3.0.18-1~deb12u2_mipsel.deb
 84621f807641713060286669238bf81dc62a4815 184976 libssl3-udeb_3.0.18-1~deb12u2_mipsel.udeb
 d456cbd5c14e77cf46b821c40ec41c295d2059b9 1536592 libssl3_3.0.18-1~deb12u2_mipsel.deb
 dcb81a6c87bbfe27e74d00249f1cde694ebe8c28 694628 openssl-dbgsym_3.0.18-1~deb12u2_mipsel.deb
 bd7e510e1c60092023d885324c62b1480396eb43 7614 openssl_3.0.18-1~deb12u2_mipsel-buildd.buildinfo
 6e49f7e2ab0de20bbb34700467a53dab4b6f8a0d 1387188 openssl_3.0.18-1~deb12u2_mipsel.deb
Checksums-Sha256:
 dc007839fb7bd600839fd7ec640e97db13e31f84ff741b8c93603a44bb9f86bb 1073424 libcrypto3-udeb_3.0.18-1~deb12u2_mipsel.udeb
 b924ffb21e49aaff76b99f75cc9388546a61f72df436f8759f63701a1eec59ca 2288452 libssl-dev_3.0.18-1~deb12u2_mipsel.deb
 4bb6f6021f25f12838b560623aab1a530f3aac442fc1e1df0b862e3d87c59b5c 4625864 libssl3-dbgsym_3.0.18-1~deb12u2_mipsel.deb
 27ec635773b83d507eb9dfcb938604897ba3861c076e4004d39044114039c75b 184976 libssl3-udeb_3.0.18-1~deb12u2_mipsel.udeb
 647c22e8921bbfb912ee56b97d9f7a26d1ea33e0c3b5ddf20823418b8f12f8aa 1536592 libssl3_3.0.18-1~deb12u2_mipsel.deb
 dd337d5742bbbfecb577bafea8ce95ad88a89c8c41d870a76005d082b16a1321 694628 openssl-dbgsym_3.0.18-1~deb12u2_mipsel.deb
 84cc2998e575d8240281c0b6e00a89269e7b6597be9664cec23474250183df9c 7614 openssl_3.0.18-1~deb12u2_mipsel-buildd.buildinfo
 4e34836e468837857c07f06db5341a66c4add49d27479570a165a507ba5abc97 1387188 openssl_3.0.18-1~deb12u2_mipsel.deb
Files:
 37432ea536d0f17a2dd667e2be7d118f 1073424 debian-installer optional libcrypto3-udeb_3.0.18-1~deb12u2_mipsel.udeb
 26dbd8e82668a366f3e1dc1327b2b321 2288452 libdevel optional libssl-dev_3.0.18-1~deb12u2_mipsel.deb
 9997945af41ece7ee8bbfe0f08d44159 4625864 debug optional libssl3-dbgsym_3.0.18-1~deb12u2_mipsel.deb
 3798b1c5d6da6623cf7c6b5e4161695e 184976 debian-installer optional libssl3-udeb_3.0.18-1~deb12u2_mipsel.udeb
 f508aca223f535ef34ceed394ac81ac3 1536592 libs optional libssl3_3.0.18-1~deb12u2_mipsel.deb
 8f8b6ca0fa3f9de2688f2f0036856f9e 694628 debug optional openssl-dbgsym_3.0.18-1~deb12u2_mipsel.deb
 0931ee6a4bcbea327ed28d15adaa8f87 7614 utils optional openssl_3.0.18-1~deb12u2_mipsel-buildd.buildinfo
 e24542e10f042fa20ebda4b8e6b2fac0 1387188 utils optional openssl_3.0.18-1~deb12u2_mipsel.deb

-----BEGIN PGP SIGNATURE-----
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=jClI
-----END PGP SIGNATURE-----