Accepted openssl 3.6.1-1 (source) into experimental

Tue, 27 Jan 2026 13:36:03 -0800 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 27 Jan 2026 21:32:02 +0100
Source: openssl
Architecture: source
Version: 3.6.1-1
Distribution: experimental
Urgency: medium
Maintainer: Debian OpenSSL Team <[email protected]>
Changed-By: Sebastian Andrzej Siewior <[email protected]>
Changes:
 openssl (3.6.1-1) experimental; urgency=medium
 .
   * Import 3.6.1
    - CVE-2025-11187 (Improper validation of PBMAC1 parameters in PKCS#12 MAC
      verification)
    - CVE-2025-15467 (Stack buffer overflow in CMS AuthEnvelopedData parsing)
    - CVE-2025-15468 (NULL dereference in SSL_CIPHER_find() function on unknown
      cipher ID)
    - CVE-2025-15469 ("openssl dgst" one-shot codepath silently truncates inputs
      >16MB)
    - CVE-2025-66199 (TLS 1.3 CompressedCertificate excessive memory allocation)
    - CVE-2025-68160 (Heap out-of-bounds write in BIO_f_linebuffer on short
      writes)
    - CVE-2025-69418 (Unauthenticated/unencrypted trailing bytes with low-level
      OCB function calls)
    - CVE-2025-69419 (Out of bounds write in PKCS12_get_friendlyname() UTF-8
      conversion)
    - CVE-2025-69420 (Missing ASN1_TYPE validation in TS_RESP_verify_response()
      function)
    - CVE-2025-69421 (NULL Pointer Dereference in PKCS12_item_decrypt_d2i_ex
      function)
    - CVE-2026-22795 (Missing ASN1_TYPE validation in PKCS#12 parsing)
    - CVE-2026-22796 (ASN1_TYPE Type Confusion in the
    - PKCS7_digest_from_attributes() function)
Checksums-Sha1:
 f43339d33c184fdf9b3391a638496c2857dd4665 2675 openssl_3.6.1-1.dsc
 845d412b5129870d9f754f89f5e195e2d18ce0e7 54891951 openssl_3.6.1.orig.tar.gz
 4fec5e1bc783c31f51040ba8746aad5503698844 833 openssl_3.6.1.orig.tar.gz.asc
 59f7c307edacf4049170c4c18e8cd4302eecaef2 48128 openssl_3.6.1-1.debian.tar.xz
Checksums-Sha256:
 7a28c39dac179bba50e390e6c65a5d0410b096f55b83e830a1e1494728f86c77 2675 
openssl_3.6.1-1.dsc
 b1bfedcd5b289ff22aee87c9d600f515767ebf45f77168cb6d64f231f518a82e 54891951 
openssl_3.6.1.orig.tar.gz
 a549571f98ac883a6eca7a2c21021a9d2129e6f4bcad2a261f9bd2487fb80f4b 833 
openssl_3.6.1.orig.tar.gz.asc
 7072ea89696f93915ec6543c4e361f5ae0156c6efb3efbd5f395647e7bb64584 48128 
openssl_3.6.1-1.debian.tar.xz
Files:
 6b6524de067e256b24f83abd9388a7f1 2675 utils optional openssl_3.6.1-1.dsc
 589777dc85ebbfeca70161c0c384d572 54891951 utils optional 
openssl_3.6.1.orig.tar.gz
 15797f652c76cc3b199134a462f63996 833 utils optional 
openssl_3.6.1.orig.tar.gz.asc
 1fa074405c11c405152be8bb9ddc72e8 48128 utils optional 
openssl_3.6.1-1.debian.tar.xz

-----BEGIN PGP SIGNATURE-----

iQGzBAEBCgAdFiEEV4kucFIzBRM39v3RBWQfF1cS+lsFAml5LKAACgkQBWQfF1cS
+lshqQwAst+QjdFCbK540LGTs5R/nUdAZXO4o5mgeGPc/9ZCH29vNeI+SfwDAM0R
5WEgMrEnXC0jg3VTYWFYO6pGPFyz5O12V6AnhmnzS3EUfiok9C+gorpRRA9VW9/R
+ct+hHPmt3kmZGipQ4BMe5d3oHl+G87t52IBd5J+n0CWK+xLUoaGu0eSNOAnEQiT
D20lj202H0mDnULtY9TaYbRd05YDwLiBOnWIThWRTQrerSpB3+sqwKq9S8aSrAgh
K9XebuVjmDjL1UxeHvN8paqFd3BqaiGPs837zPnTTs9oZrv+7UfQmYaWO7TjGy9s
FXnuLUTY9meQ0lUnddH0Cz24Clneal4l0cvIQJgIlLFIB0E2FvIZhV5/CYna/ok3
L2Hdcsl+E7a8KrHO/WEoCMV4l5Ljv3/7OUeebcnvZtmklk2Rh4cu26eaDVl4PK53
JpUSDBHcF2a9sO+mq0wp7SOpSWhOefd1XUTXylnbYg6T8RnAy9pEQNb6xNvPnIQ5
iC66WYUx
=dVRI
-----END PGP SIGNATURE-----

Attachment: pgpVu9nWHvq1a.pgp
Description: PGP signature

Reply via email to