-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 03 Apr 2026 14:29:32 +0200
Source: openssl
Binary: libcrypto3-udeb libssl-dev libssl3 libssl3-dbgsym libssl3-udeb openssl openssl-dbgsym
Architecture: armhf
Version: 3.0.19-1~deb12u2
Distribution: bookworm-security
Urgency: medium
Maintainer: arm Build Daemon (arm-ubc-05) <buildd_arm64-arm-ubc-05@buildd.debian.org>
Changed-By: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
Description:
 libcrypto3-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl3    - Secure Sockets Layer toolkit - shared libraries
 libssl3-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (3.0.19-1~deb12u2) bookworm-security; urgency=medium
 .
   * CVE-2026-28387 ("Potential use-after-free in DANE client code")
   * CVE-2026-28389 ("Possible NULL dereference when processing CMS
     KeyAgreeRecipientInfo")
   * CVE-2026-28390 ("Possible NULL dereference when processing CMS
     KeyTransportRecipient Info")
   * CVE-2026-31789 ("Heap buffer overflow in hexadecimal conversion")
   * CVE-2026-31790 ("Incorrect failure handling in RSA KEM RSASVE
     encapsulation")
Checksums-Sha1:
 6b6653795e9f35d858da4e6192ab83c43570221c 1212112 libcrypto3-udeb_3.0.19-1~deb12u2_armhf.udeb
 bdc4d6e68142022f9236bd3d73ba25032ec6864b 2143332 libssl-dev_3.0.19-1~deb12u2_armhf.deb
 05c9e5312fb667d33235e970dd960c6e744db586 4473824 libssl3-dbgsym_3.0.19-1~deb12u2_armhf.deb
 57fb5c537046d8284602e23c6f7d1adf6b0b2c81 186780 libssl3-udeb_3.0.19-1~deb12u2_armhf.udeb
 e5734e14db782e6a572fea1eeb77cdafedac0752 1676088 libssl3_3.0.19-1~deb12u2_armhf.deb
 d4b4a6d7e480f5942b491577c77e42d033a891da 660252 openssl-dbgsym_3.0.19-1~deb12u2_armhf.deb
 6555dcae32f3781d2b9c379faedb916d79914cf1 7661 openssl_3.0.19-1~deb12u2_armhf-buildd.buildinfo
 6e08aea81bb52a56ab41c6e9141e3031a68b4eab 1402156 openssl_3.0.19-1~deb12u2_armhf.deb
Checksums-Sha256:
 4ddb417988958597acf9bb31906f56b51582f701c71a904db975030d64abe75d 1212112 libcrypto3-udeb_3.0.19-1~deb12u2_armhf.udeb
 4fabf3823fe56237b0822656d624e09e88d31967c54e0fd64a3db4fcf07d86bd 2143332 libssl-dev_3.0.19-1~deb12u2_armhf.deb
 1effd191164124bb09b92b82235783c3fc79cb6f64713b02a2eab66676418643 4473824 libssl3-dbgsym_3.0.19-1~deb12u2_armhf.deb
 cbead876de4870dd6e5eca1f2ce768f1a2695626f39ef335aa18c8aed5354568 186780 libssl3-udeb_3.0.19-1~deb12u2_armhf.udeb
 9f3c59a6b7bfbaed74aedff593f6b28dff6e3d0a581064003c91cfadde09d979 1676088 libssl3_3.0.19-1~deb12u2_armhf.deb
 c7372f10fe5e30585af36d59de30b782e604bc88079825b2d7d0b5f220d0d929 660252 openssl-dbgsym_3.0.19-1~deb12u2_armhf.deb
 1cef8ae5c38b2c45ef37e0776e552cf68f013eabf3a8bb0d2c5e00efcbd4317f 7661 openssl_3.0.19-1~deb12u2_armhf-buildd.buildinfo
 681ff16f8b22a6392292197e45db0f309567207b70587d31074b2ef724c98510 1402156 openssl_3.0.19-1~deb12u2_armhf.deb
Files:
 872042c6897617aab8dcd66b7cb48a9a 1212112 debian-installer optional libcrypto3-udeb_3.0.19-1~deb12u2_armhf.udeb
 1200eaca73a7df73ca138e9db963b6ae 2143332 libdevel optional libssl-dev_3.0.19-1~deb12u2_armhf.deb
 89ed38be9e519398c9e10c4072331724 4473824 debug optional libssl3-dbgsym_3.0.19-1~deb12u2_armhf.deb
 0433f02ed687acb9adab93a97fa9cd35 186780 debian-installer optional libssl3-udeb_3.0.19-1~deb12u2_armhf.udeb
 460d089eaf59cb40224cc1f8f36c7da5 1676088 libs optional libssl3_3.0.19-1~deb12u2_armhf.deb
 c43e508c9891c7518900fcc8589eef69 660252 debug optional openssl-dbgsym_3.0.19-1~deb12u2_armhf.deb
 4a166b6f249aeebaca619c13ea752682 7661 utils optional openssl_3.0.19-1~deb12u2_armhf-buildd.buildinfo
 76a46b16f39d6a01ed6a7ea6e95e1462 1402156 utils optional openssl_3.0.19-1~deb12u2_armhf.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEiIG3Q3DxwDgRKKeyLRECdjCZQkcFAmnP42AACgkQLRECdjCZ
QkfANA/9Hf7U2CMormfNP0vi7QXRo28xQ3EwAI1eywblT+KORDVbZ9WzM7Schdfi
Oo7UV2XgfF60491uxytr0Le6VjV/zZb9U7dnvbZaY8llye/GpbLvmlBzcHSL7xEZ
CRXObEo8TzRj9i1FeUqyFmB975EF5uZlpF7y2gRDdf998SSakw2ygmgAOqSKo05H
dYy+OpaX+mtETBE3eQg0WCWLWg1gsAVNdrDBCDDNmDLqi2fDLo3iE4KjeE8mmgZi
/fKCsPLRCIVoe1ujXQy3zAIG2oSjKBXBXndvQsr78ZnEVpBLdB7bGA8I5Zgkqu9c
nLiEV/jfOtIHrR/LSUa261ugelRwaXhd9L5OWZKoSDjqHfmD6fbgguUEhHdkpoEJ
F/sS4Ohh8c9ETipXlqHMbH23ouskCW5ECdSRhAS+DK1DF39DCzYvE/9mNCLi+Lpp
Yt5FSuYLkeVm6O5iyx+Ymhus5/6aI6XY7U+s9wXpeBIm5W4X9HFXyiqWhyAFGajk
FRLDFlbZV2VcmS7mMhYBZ9Sc2DSl0Vcjl9u3L4kl8JohiPETf94sL5ZJfVtVTdPT
cmxrCvIR7mY0I6Bwv0cS3bu3CJbcumY+o9Tc1YXyZS9IIhy6ikFMMPyWbeWSKC4P
2EMn5rNsysxe4ybDqCSfR+EOwKoLMK78rKDmSgdbTn+LjF3biWw=
=MW8/
-----END PGP SIGNATURE-----