-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 03 Apr 2026 12:05:32 +0200 Source: openssl Binary: libcrypto3-udeb libssl-dev libssl3-udeb libssl3t64 libssl3t64-dbgsym openssl openssl-dbgsym openssl-provider-fips openssl-provider-fips-dbgsym openssl-provider-legacy openssl-provider-legacy-dbgsym Architecture: arm64 Version: 3.5.5-1~deb13u2 Distribution: trixie-security Urgency: medium Maintainer: arm Build Daemon (arm-ubc-01) Changed-By: Sebastian Andrzej Siewior Description: libcrypto3-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb) libssl-dev - Secure Sockets Layer toolkit - development files libssl3-udeb - ssl shared library - udeb (udeb) libssl3t64 - Secure Sockets Layer toolkit - shared libraries openssl - Secure Sockets Layer toolkit - cryptographic utility openssl-provider-fips - Secure Sockets Layer toolkit - cryptographic utility openssl-provider-legacy - Secure Sockets Layer toolkit - cryptographic utility Closes: 1130650 Changes: openssl (3.5.5-1~deb13u2) trixie-security; urgency=medium . * CVE-2026-2673 ("OpenSSL TLS 1.3 server may choose unexpected key agreement group") (Closes: #1130650). * CVE-2026-28387 ("Potential use-after-free in DANE client code") * CVE-2026-28389 ("Possible NULL dereference when processing CMS KeyAgreeRecipientInfo") * CVE-2026-28390 ("Possible NULL dereference when processing CMS KeyTransportRecipient Info") * CVE-2026-31789 ("Heap buffer overflow in hexadecimal conversion") * CVE-2026-31790 ("Incorrect failure handling in RSA KEM RSASVE encapsulation") Checksums-Sha1: d8c5eb3cff44acc5bee85c9f8d583969185fe764 2336712 libcrypto3-udeb_3.5.5-1~deb13u2_arm64.udeb afc365f34a638fb779d4a306b1b82909c9270906 3388220 libssl-dev_3.5.5-1~deb13u2_arm64.deb 83dc0f76081eebeb0bc29b9efa2b40d7bb13d49f 340004 libssl3-udeb_3.5.5-1~deb13u2_arm64.udeb 79f3e2c92aab4d784c3dad7a575b06f13774c96d 5999928 libssl3t64-dbgsym_3.5.5-1~deb13u2_arm64.deb fca59aeec8278fab06390e434364565e5fc27328 2755804 libssl3t64_3.5.5-1~deb13u2_arm64.deb 3d7e48d8cc8cf68a2d1140ae7242ff29ebb48a3b 760284 openssl-dbgsym_3.5.5-1~deb13u2_arm64.deb 4de4988a5a85687aa9987854d3810fa3106e4aab 1707332 openssl-provider-fips-dbgsym_3.5.5-1~deb13u2_arm64.deb 97be3bf092d5f9d2225455d3aae37572755e6e04 992652 openssl-provider-fips_3.5.5-1~deb13u2_arm64.deb 9dd639f489e94f622fecaa93b1d28aa0ff109502 91724 openssl-provider-legacy-dbgsym_3.5.5-1~deb13u2_arm64.deb 63ea97f3fbf21f483b777575ad2f616cf816ac07 308420 openssl-provider-legacy_3.5.5-1~deb13u2_arm64.deb 697a8c270e8c46be5aadf458d62922c91f87ad69 8776 openssl_3.5.5-1~deb13u2_arm64-buildd.buildinfo 53e497ac37186b264c45f2ebc80ed0022a6e3557 1463628 openssl_3.5.5-1~deb13u2_arm64.deb Checksums-Sha256: ead08b510f0af9ca13918d6d46bc3b565420977da27d255af46c9c20523c5813 2336712 libcrypto3-udeb_3.5.5-1~deb13u2_arm64.udeb 46cedede6e699f7dc0e83c2b38a31d6b26c1b102538558f583ff54c8ee8f0973 3388220 libssl-dev_3.5.5-1~deb13u2_arm64.deb 43e01e023379af76c9e68eb1bbd1d5312d92275312b4a47500bcc29ba656559f 340004 libssl3-udeb_3.5.5-1~deb13u2_arm64.udeb 763daf03fbc41120a65b3df535f7efbf52cdd5d04c71249979528873dacb5ad7 5999928 libssl3t64-dbgsym_3.5.5-1~deb13u2_arm64.deb 023b4f3c8583ae9fbbeb2d8629ec35918eea36adaac5a7e9a50bae2472927156 2755804 libssl3t64_3.5.5-1~deb13u2_arm64.deb 07c85ca64d9170697429c868da24fef884341a28ccef397aa5926687a6435b4b 760284 openssl-dbgsym_3.5.5-1~deb13u2_arm64.deb e8b89227b78afaf3e1dfbad5ae3ce7c6067b9b434fd907532f2ecb241afa5f98 1707332 openssl-provider-fips-dbgsym_3.5.5-1~deb13u2_arm64.deb ed2d81ae7284ff6edda2ecb6c77db7432630f5f6afcea48505e2ac4da707b3e1 992652 openssl-provider-fips_3.5.5-1~deb13u2_arm64.deb e78e9bc4827f02fbbfcc47ebdfce004d2e0d6ccf08cc010864264df6a6d0aa91 91724 openssl-provider-legacy-dbgsym_3.5.5-1~deb13u2_arm64.deb 9b4d4aed11f54dd39b9dc1c658c569c85256528636d8ae2f1e8298b8da23af63 308420 openssl-provider-legacy_3.5.5-1~deb13u2_arm64.deb 6fb6e13d88b29f2af2e5b01538c1d1627268e8adafe6367880f278eba5c88d98 8776 openssl_3.5.5-1~deb13u2_arm64-buildd.buildinfo 0ce35ddd2569346d67d259c9b6e327413be7fb098f6030fe729304e208270171 1463628 openssl_3.5.5-1~deb13u2_arm64.deb Files: 0fe89eef9cea7fa69adaea3be449a161 2336712 debian-installer optional libcrypto3-udeb_3.5.5-1~deb13u2_arm64.udeb 336a4620b61a0986826a7429d69e160e 3388220 libdevel optional libssl-dev_3.5.5-1~deb13u2_arm64.deb 3430312f18476c30941f292d2fa57d75 340004 debian-installer optional libssl3-udeb_3.5.5-1~deb13u2_arm64.udeb 782db98165abb461a1e59157c0d4a61a 5999928 debug optional libssl3t64-dbgsym_3.5.5-1~deb13u2_arm64.deb 6c3e26319dbf6ef63f67995d3aaf962b 2755804 libs optional libssl3t64_3.5.5-1~deb13u2_arm64.deb 681978d1b1d56a4f2776d4aabadfb243 760284 debug optional openssl-dbgsym_3.5.5-1~deb13u2_arm64.deb 37d4d32c7c56b6b67acda26669d7aede 1707332 debug optional openssl-provider-fips-dbgsym_3.5.5-1~deb13u2_arm64.deb e4d6750fc61da5daf0b2e85743e31ee2 992652 utils optional openssl-provider-fips_3.5.5-1~deb13u2_arm64.deb 66aee0fc699062326dadfcda666054c5 91724 debug optional openssl-provider-legacy-dbgsym_3.5.5-1~deb13u2_arm64.deb 41e7796e4cd986147b5df45272e62bd9 308420 utils optional openssl-provider-legacy_3.5.5-1~deb13u2_arm64.deb 9fd4d7bda77993ccddf200eea9d7c42f 8776 utils optional openssl_3.5.5-1~deb13u2_arm64-buildd.buildinfo 55c8958cc5842ffa04875f203595a10a 1463628 utils optional openssl_3.5.5-1~deb13u2_arm64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE0Ha//LlsGOpbQ/H4xqCFmsOWgoYFAmnP4esACgkQxqCFmsOW goaqwxAAk2ZV3Feu9fIvbuOOE/GqAMH/mNIb3f4GdUhgGu/HzX4Mq0QATBVtYZDQ /am6xcNuwkKTQgJrLm8PMoMS+DPJQ2CfOHhf8h181pTbHxCnXQkz9mXA4lv2j03T juFS7Pnj8EOs6j6jayxnqaJNAuGpWD5Pxj49EhKYUDlBXSkyW2Lr57FptHej1nXr n7qamNO7SyB0JQL2EhehW8Wg+7oJ9n3TVhKYgl8MVXomIcsytiu1gJul5FvMiyiu T0WqI/Mh/tG5uiuVyl5jU4hAF+YyBK7jUcPH7JnyvgMREwwwRP38nEGFENr+K8Yd pPkAU6mFv/5cUdCoLLgViTeHdTpKid/hFGdbmAMTxxbWaWI+tB2Q0jVYGBdmiDqv ZR15oOHNO7ePfMHBSA8wtbJKmzOvXiiKdcnGxT4eqvAtvZoipL7lpqDvmhJgf1Fx aW9m/1J9zkto4XOclY16M/j2y+gOnfwxdICBafRlo/IH83vhR20ljEMyxA/hiS3E pQbPK5/wE7tcFjtwM2y9LUzm6wVQUzZzViGPe3B0juWJ6hDXAh9mlzzyKUM2awKK HqyDoYde6ESRUqrjsDpMQ4A3542OQ1LPloE6oLiJ3glgWrFAveBx+Jpwu3cbZQJ3 21eS/K65JBkJLCZL0QN6vovU7SdIZcbgnnvsmF85qsZ9eQ2mdM0= =pi2M -----END PGP SIGNATURE-----