Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted openssl 1.1.1w-0+deb11u5 (source) into oldoldstable-security
Date: Mon, 23 Feb 2026 12:50:24 +0000
Signed by: Andreas Henriksson <ah@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 29 Jan 2026 19:45:07 +0100
Source: openssl
Architecture: source
Version: 1.1.1w-0+deb11u5
Distribution: bullseye-security
Urgency: high
Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org>
Changed-By: Andreas Henriksson <andreas@fatal.se>
Changes:
 openssl (1.1.1w-0+deb11u5) bullseye-security; urgency=high
 .
   * Non-maintainer upload by the LTS Security Team.
   * CVE-2025-68160 (Heap out-of-bounds write in BIO_f_linebuffer on short
     writes)
   * CVE-2025-69418 (Unauthenticated/unencrypted trailing bytes with low-level
     OCB function calls)
   * CVE-2025-69419 (Out of bounds write in PKCS12_get_friendlyname() UTF-8
     conversion)
   * CVE-2025-69420 (Missing ASN1_TYPE validation in TS_RESP_verify_response()
     function)
   * CVE-2025-69421 (NULL Pointer Dereference in PKCS12_item_decrypt_d2i_ex
     function)
   * CVE-2026-22795 (Missing ASN1_TYPE validation in PKCS#12 parsing)
   * CVE-2026-22796 (ASN1_TYPE Type Confusion in the
     PKCS7_digest_from_attributes() function)
Checksums-Sha1:
 eb7c06b4c8215be52a6a1db04603a98eff155d0b 2655 openssl_1.1.1w-0+deb11u5.dsc
 76fbf3ca4370e12894a408ef75718f32cdab9671 9893384 openssl_1.1.1w.orig.tar.gz
 bca277263dfe1d951360eefda6c5eb01edc36462 833 openssl_1.1.1w.orig.tar.gz.asc
 bdf92b729094b2c7265be8922df87d709fb63bf8 107184 openssl_1.1.1w-0+deb11u5.debian.tar.xz
 ef0cfbb25af4d853df039e672ccb06f2789ddf6a 6380 openssl_1.1.1w-0+deb11u5_source.buildinfo
Checksums-Sha256:
 283ca1b13a08bbaebb95f53f8ed1105ce4a6eee4d89277e46c38d32dd90de5c3 2655 openssl_1.1.1w-0+deb11u5.dsc
 cf3098950cb4d853ad95c0841f1f9c6d3dc102dccfcacd521d93925208b76ac8 9893384 openssl_1.1.1w.orig.tar.gz
 5e5c3694cda755231c0438ac3c96af00d7510abd7b916d79c51bb979567040db 833 openssl_1.1.1w.orig.tar.gz.asc
 2e36a934591efe4da50f2fb9d9847580c6d81935020d54bf495cc3ad7163a1ff 107184 openssl_1.1.1w-0+deb11u5.debian.tar.xz
 545857b201cb16cff64f2ae5909ba60fd0e8b3b50f70538b414e0191bba5d46c 6380 openssl_1.1.1w-0+deb11u5_source.buildinfo
Files:
 691f125cc6e7a40ac959549212baaa9a 2655 utils optional openssl_1.1.1w-0+deb11u5.dsc
 3f76825f195e52d4b10c70040681a275 9893384 utils optional openssl_1.1.1w.orig.tar.gz
 89d454a3aab2163ba2dda93510ea8089 833 utils optional openssl_1.1.1w.orig.tar.gz.asc
 8f5c5cee377ac453a3fcb24817b816aa 107184 utils optional openssl_1.1.1w-0+deb11u5.debian.tar.xz
 59176b07305626db435d0214f8aac51f 6380 utils optional openssl_1.1.1w-0+deb11u5_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=RDX/
-----END PGP SIGNATURE-----
News for package openssl
