-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 03 Apr 2026 14:29:32 +0200
Source: openssl
Binary: libcrypto3-udeb libssl-dev libssl3 libssl3-dbgsym libssl3-udeb openssl openssl-dbgsym
Architecture: amd64
Version: 3.0.19-1~deb12u2
Distribution: bookworm-security
Urgency: medium
Maintainer: amd64 / i386 Build Daemon (x86-csail-01) <buildd_amd64-x86-csail-01@buildd.debian.org>
Changed-By: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
Description:
 libcrypto3-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl3    - Secure Sockets Layer toolkit - shared libraries
 libssl3-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (3.0.19-1~deb12u2) bookworm-security; urgency=medium
 .
   * CVE-2026-28387 ("Potential use-after-free in DANE client code")
   * CVE-2026-28389 ("Possible NULL dereference when processing CMS
     KeyAgreeRecipientInfo")
   * CVE-2026-28390 ("Possible NULL dereference when processing CMS
     KeyTransportRecipient Info")
   * CVE-2026-31789 ("Heap buffer overflow in hexadecimal conversion")
   * CVE-2026-31790 ("Incorrect failure handling in RSA KEM RSASVE
     encapsulation")
Checksums-Sha1:
 8b6fe24f20c0417ac3f9b6770922d5c7531e7828 1529624 libcrypto3-udeb_3.0.19-1~deb12u2_amd64.udeb
 d13f857e3ab6d653e19f265d0195e2920bd9016c 2440884 libssl-dev_3.0.19-1~deb12u2_amd64.deb
 db415167faf3ae7a6ade2e8ec98faedee2f6b0d5 4781176 libssl3-dbgsym_3.0.19-1~deb12u2_amd64.deb
 73d1011c9922ea3c28a9f1d4e27a632274a51356 222208 libssl3-udeb_3.0.19-1~deb12u2_amd64.udeb
 23a087474ac60ad851ae9ba05c9b01478127ac12 2032252 libssl3_3.0.19-1~deb12u2_amd64.deb
 b993edd3fc088c313d1c57c69cc43740265174e8 689464 openssl-dbgsym_3.0.19-1~deb12u2_amd64.deb
 52d567c86277d4146a7945bc9816b0a2eacb0bdd 7821 openssl_3.0.19-1~deb12u2_amd64-buildd.buildinfo
 410d7e24a9322cdf7baa6af04af990a4e0469d02 1434820 openssl_3.0.19-1~deb12u2_amd64.deb
Checksums-Sha256:
 6fc559f7606237663f5b206fe7cb43d4fbfc9004e95ed760bfce47961e0b6a6f 1529624 libcrypto3-udeb_3.0.19-1~deb12u2_amd64.udeb
 758e1f17726557c18eeb968c8f8cc09afdf81ae0321a5d73a7f35f41a9fb956c 2440884 libssl-dev_3.0.19-1~deb12u2_amd64.deb
 ee354aa445c35e9b5e205ffb5b58d0de63dfc9f0b5bee92559a42a79513d1a20 4781176 libssl3-dbgsym_3.0.19-1~deb12u2_amd64.deb
 42c92e3a26a5332c84854709f0b6de8c800225eaaea4d8eed8fa21ea25b8b8a6 222208 libssl3-udeb_3.0.19-1~deb12u2_amd64.udeb
 d5b7d11bdb3b9cda3a90b4d9586ee1e90e79163473934d3927ce658bd17fd1ea 2032252 libssl3_3.0.19-1~deb12u2_amd64.deb
 1ba613363c4b71870e2faead7097fa78c457aa78d1b2abdaca9b7dd71bde2d76 689464 openssl-dbgsym_3.0.19-1~deb12u2_amd64.deb
 5456d98b8a61316285e36f8547ec7d9924a1b8efe9a9f0f28f6bca1f6ac85544 7821 openssl_3.0.19-1~deb12u2_amd64-buildd.buildinfo
 7c5a984639c7fa98af33a39d26c6a287424f238e0daec1d4bfe0dccd3eb19fff 1434820 openssl_3.0.19-1~deb12u2_amd64.deb
Files:
 df528bb9d01046a77494917a89eadfd1 1529624 debian-installer optional libcrypto3-udeb_3.0.19-1~deb12u2_amd64.udeb
 8cc96ca96f5e1e440e99772a1e999513 2440884 libdevel optional libssl-dev_3.0.19-1~deb12u2_amd64.deb
 b7f8793587d340941bf431157446f07f 4781176 debug optional libssl3-dbgsym_3.0.19-1~deb12u2_amd64.deb
 c7398375416781630c5df0fcac3d8b1f 222208 debian-installer optional libssl3-udeb_3.0.19-1~deb12u2_amd64.udeb
 b7a0dde6b41380bd35bf3c587ec0310b 2032252 libs optional libssl3_3.0.19-1~deb12u2_amd64.deb
 fa90be46a24b843407be008bcf29a862 689464 debug optional openssl-dbgsym_3.0.19-1~deb12u2_amd64.deb
 6a3f819042dec24fbd550e061911f146 7821 utils optional openssl_3.0.19-1~deb12u2_amd64-buildd.buildinfo
 d31d9488d638eb0a7e89027144ebb07a 1434820 utils optional openssl_3.0.19-1~deb12u2_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=cEp4
-----END PGP SIGNATURE-----