-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 03 Apr 2026 12:05:32 +0200 Source: openssl Binary: libcrypto3-udeb libssl-dev libssl3-udeb libssl3t64 libssl3t64-dbgsym openssl openssl-dbgsym openssl-provider-fips openssl-provider-fips-dbgsym openssl-provider-legacy openssl-provider-legacy-dbgsym Architecture: riscv64 Version: 3.5.5-1~deb13u2 Distribution: trixie-security Urgency: medium Maintainer: riscv64 Build Daemon (rv-manda-01) Changed-By: Sebastian Andrzej Siewior Description: libcrypto3-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb) libssl-dev - Secure Sockets Layer toolkit - development files libssl3-udeb - ssl shared library - udeb (udeb) libssl3t64 - Secure Sockets Layer toolkit - shared libraries openssl - Secure Sockets Layer toolkit - cryptographic utility openssl-provider-fips - Secure Sockets Layer toolkit - cryptographic utility openssl-provider-legacy - Secure Sockets Layer toolkit - cryptographic utility Closes: 1130650 Changes: openssl (3.5.5-1~deb13u2) trixie-security; urgency=medium . * CVE-2026-2673 ("OpenSSL TLS 1.3 server may choose unexpected key agreement group") (Closes: #1130650). * CVE-2026-28387 ("Potential use-after-free in DANE client code") * CVE-2026-28389 ("Possible NULL dereference when processing CMS KeyAgreeRecipientInfo") * CVE-2026-28390 ("Possible NULL dereference when processing CMS KeyTransportRecipient Info") * CVE-2026-31789 ("Heap buffer overflow in hexadecimal conversion") * CVE-2026-31790 ("Incorrect failure handling in RSA KEM RSASVE encapsulation") Checksums-Sha1: bad6809082557d55ff881514c9a0edfda0a24eda 1809432 libcrypto3-udeb_3.5.5-1~deb13u2_riscv64.udeb e4f2a01751b63c0a84a7932e9fe5698681dd52ac 5807428 libssl-dev_3.5.5-1~deb13u2_riscv64.deb 2e4e60fa663978d52fb7eae3b51cad26ce594990 378684 libssl3-udeb_3.5.5-1~deb13u2_riscv64.udeb 9c4b49ced32290da46c06a0add2baf681074dd17 5782692 libssl3t64-dbgsym_3.5.5-1~deb13u2_riscv64.deb 3c12638a9109f44b8a38eaf89a4447e3d39d334d 2228460 libssl3t64_3.5.5-1~deb13u2_riscv64.deb 4da793cf1db4ba6fc11dedf01e366523b0f68cf5 731244 openssl-dbgsym_3.5.5-1~deb13u2_riscv64.deb 4ccc14fa116eb3390fc0088dd35d833031ab7db8 1658336 openssl-provider-fips-dbgsym_3.5.5-1~deb13u2_riscv64.deb aeaa342157c26e8ec5f43670405ad13bb013f612 886300 openssl-provider-fips_3.5.5-1~deb13u2_riscv64.deb 2a6b614680bc03eecdea006c50cca7268b73ae18 92032 openssl-provider-legacy-dbgsym_3.5.5-1~deb13u2_riscv64.deb 480a5c595bd1b212564c96831c3e1b36ebfcc6c6 311860 openssl-provider-legacy_3.5.5-1~deb13u2_riscv64.deb 79b371bc5bdb7483d8da5437ac5966d9fe208c6b 8787 openssl_3.5.5-1~deb13u2_riscv64-buildd.buildinfo b32429e5bce65a4cad8a9c3c48047db97148812d 1480416 openssl_3.5.5-1~deb13u2_riscv64.deb Checksums-Sha256: 97f6a186299a5ea71e94e81577cc872357290acd305eb4a6edddd3714c493690 1809432 libcrypto3-udeb_3.5.5-1~deb13u2_riscv64.udeb 57a2cd2ad186a59bc08eb5b93af35db2f08c099ec1ca1d10524efbf8372954ce 5807428 libssl-dev_3.5.5-1~deb13u2_riscv64.deb 2782a248f055d082daa19c4d0759f89bf499777e2f7782fb0966698ec422acd9 378684 libssl3-udeb_3.5.5-1~deb13u2_riscv64.udeb fc62f1dc360c858860495475e3ec873de3b98306f5b11bb8d2496d85753ecae6 5782692 libssl3t64-dbgsym_3.5.5-1~deb13u2_riscv64.deb 5b081fe9734b9da13d6a63a6177d348c7ba5e5b45ac97a800595eaf5c66d3392 2228460 libssl3t64_3.5.5-1~deb13u2_riscv64.deb 8f1b944f2b317c3834d5d975b86261c1c65c8aa228469b3a0c4f9db1a1456690 731244 openssl-dbgsym_3.5.5-1~deb13u2_riscv64.deb 034992db21450bbae49e6ee16b1d002312dc80529c0df00bcb23da7a16aea7ed 1658336 openssl-provider-fips-dbgsym_3.5.5-1~deb13u2_riscv64.deb 908ec0f3128626c7e55b0e41f5ca473d8a53926dba05931b96faa2ab2f500eee 886300 openssl-provider-fips_3.5.5-1~deb13u2_riscv64.deb 2eeeb03fe432f4eb912d758313618a8e2a04f0c295edb8f6b929f3d5b8cc6172 92032 openssl-provider-legacy-dbgsym_3.5.5-1~deb13u2_riscv64.deb 636393a16e5e355e6911aeea4584a8923fc72eae1ca1137013732d824bcd56d9 311860 openssl-provider-legacy_3.5.5-1~deb13u2_riscv64.deb bd97fcb3e81e65e6a66554d98c93a0c8429a6daec6a0c730719384f3164c689b 8787 openssl_3.5.5-1~deb13u2_riscv64-buildd.buildinfo f84074309a77d3b7e544c8bfcab554f8beb1cc677e56fc5c1411b1fb8a5dba92 1480416 openssl_3.5.5-1~deb13u2_riscv64.deb Files: 6ce32058735ae45af02f1a97e52aa3b6 1809432 debian-installer optional libcrypto3-udeb_3.5.5-1~deb13u2_riscv64.udeb a2aff3a0d95ea307b577a92d663cad1d 5807428 libdevel optional libssl-dev_3.5.5-1~deb13u2_riscv64.deb 5c687653369b32c27ce1f0b631000718 378684 debian-installer optional libssl3-udeb_3.5.5-1~deb13u2_riscv64.udeb e7942982759f92d6c8f95306d1689a81 5782692 debug optional libssl3t64-dbgsym_3.5.5-1~deb13u2_riscv64.deb d6d6ca1f8cc0cd3be261fd26bc527b2f 2228460 libs optional libssl3t64_3.5.5-1~deb13u2_riscv64.deb dae729541cfcc6d94647d236ee26f024 731244 debug optional openssl-dbgsym_3.5.5-1~deb13u2_riscv64.deb 3a313a266ff7b552bf1eeccc2cb8aeac 1658336 debug optional openssl-provider-fips-dbgsym_3.5.5-1~deb13u2_riscv64.deb 253a9e685a40a26bd228d26e89486994 886300 utils optional openssl-provider-fips_3.5.5-1~deb13u2_riscv64.deb 1dc68c4e1265afbf82d0b17019021f94 92032 debug optional openssl-provider-legacy-dbgsym_3.5.5-1~deb13u2_riscv64.deb 44bcaa1f4163db64665bf676f67a852d 311860 utils optional openssl-provider-legacy_3.5.5-1~deb13u2_riscv64.deb 1e645a7304aed7d7869d98260164c81d 8787 utils optional openssl_3.5.5-1~deb13u2_riscv64-buildd.buildinfo 334f8353a66f92e33659a17da6222bb1 1480416 utils optional openssl_3.5.5-1~deb13u2_riscv64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEwN+C+Bc8deN4UliX50ghctvtZFQFAmnQA2gACgkQ50ghctvt ZFSb4Q//WMknfu29Z9yNkON+Ibm4QxOklVTwDVNSDQkyZaCKGgfcX4Jj4K4EtpW5 /GsEKV1GWetunK2RxlUTlq/nTgNemEH3LoDmCFZCL6nJfw3rTdoXMuo+r/cEiI4Z 8ZnwrDimxSSq2ARg2AzmBHNNJjs6k0a051+GIajcsmziXQb30uslGWa32w+X0sGt q2hvZkyzcrWcLv5kf3VufnDkLVJ7tB4KBURTOB0A0JzSLr6XFFbL/WGY7ZanowO4 5uJ5AYuzDNx5vBvXqDGxlK66rMIkaqVn2TQX3C7eMm45mWQYgU4rQnqyOFpVSETN ibuqtECUhfLfRWuVIi7Yp/j7fnGmYxUub8xiFyNxE9tA39VmqJPqYRS9iWayLptg Xq9B0UrrgC/F692JpI6CE9vHXH/UhNLYC/zRiLCHZW4GmnEvxSDRMWkF6IvPe7PP XxtxjkIdk52LDrN8/GZh6z6AwKlo+XJH43jB5SqrvAcsdKNkMJkWYUuk35917AXO IjZzbIIzWqaOCcnaQH9HyYCzDTYyZ7F+uP72brdTDqxsFqKIwirMhfBllKVjDG9T Gcp2IsnEtvmHKW7R2ZZalD+sajrqJun+99r1Zvynw5bm6bI7w+t3PMLY3vB9CbB1 MJQgqCOcTWzMwPxSU17Vd9IjvdgIQb7QsxmcdcrH2jnNbAo5So4= =7gPB -----END PGP SIGNATURE-----