openKylin openssl package

openssl 3.5.5-ok6 source package in openKylin

Changelog

openssl (3.5.5-ok6) huanghe; urgency=medium

  * CVE-2026-34180, Heap Buffer Over-read in ASN.1 Content Parsing
  * CVE-2026-34181, PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys
  * CVE-2026-34182, CMS AuthEnvelopedData Processing May Accept Forged Messages
  * CVE-2026-34183, Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler
  * CVE-2026-42764, NULL pointer dereference in QUIC server initial packet handling
  * CVE-2026-42766, Possible NULL Dereference in Password-Based CMS Decryption
  * CVE-2026-42767, NULL Pointer Dereference in CRMF EncryptedValue Decryption
  * CVE-2026-42768, Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()
  * CVE-2026-42769, Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate
  * CVE-2026-42770, FFC-DH Peer Validation Uses Attacker-Supplied q
  * CVE-2026-45445, AES-OCB IV Ignored on EVP_Cipher() Path
  * CVE-2026-45446, Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes
  * CVE-2026-45447, Heap Use-After-Free in OpenSSL PKCS7_verify()
  * CVE-2026-7383, Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion
  * CVE-2026-9076, Out-of-Bounds Read in CMS Password-Based Decryption

 -- songjuntao <email address hidden>  Wed, 17 Jun 2026 13:28:16 +0800

Upload details

Uploaded by:
songjuntao
Sponsored by:
Cibot
Uploaded to:
Huanghe V3.0
Original maintainer:
Ubuntu Developers
Architectures:
any all
Section:
utils
Urgency:
Medium Urgency

Publishing See full publishing history

Series Pocket Published Component Section
Huanghe V3.0 proposed main utils

Downloads

File Size SHA-256 Checksum
openssl_3.5.5.orig.tar.gz 50.6 MiB b28c91532a8b65a1f983b4c28b7488174e4a01008e29ce8e69bd789f28bc2a89
openssl_3.5.5.orig.tar.gz.asc 833 bytes eaef5b1054b84b8d1e6c61c9fc8867828be5ce686d0221580faf8bdc16489da9
openssl_3.5.5-ok6.debian.tar.xz 60.2 KiB def1a535fc7b0819c7cdad78c26007995a46e3747861f1c2081cde168a951f01
openssl_3.5.5-ok6.dsc 2.6 KiB 6bee5ed445ae68deecc78822d14ce1dde676ea8e6280787aff1489ec0c99884f

Available diffs

View changes file

Binary packages built by this source

libcrypto3-udeb: Secure Sockets Layer toolkit - libcrypto udeb

 This package is part of the OpenSSL project's implementation of the SSL
 and TLS cryptographic protocols for secure communication over the
 Internet.
 .
 It contains a version of the libcrypto shared library for use with the
 Debian Installer. Do not install it on a normal system.

libssl-dev: Secure Sockets Layer toolkit - development files

 This package is part of the OpenSSL project's implementation of the SSL
 and TLS cryptographic protocols for secure communication over the
 Internet.
 .
 It contains development libraries, header files, and manpages for libssl
 and libcrypto.

libssl-doc: Secure Sockets Layer toolkit - development documentation

 This package is part of the OpenSSL project's implementation of the SSL
 and TLS cryptographic protocols for secure communication over the
 Internet.
 .
 It contains manpages and demo files for libssl and libcrypto.

libssl3-udeb: ssl shared library - udeb

 libssl shared library.
 .
 Do not install it on a normal system.

libssl3t64: Secure Sockets Layer toolkit - shared libraries

 This package is part of the OpenSSL project's implementation of the SSL
 and TLS cryptographic protocols for secure communication over the
 Internet.
 .
 It provides the libssl and libcrypto shared libraries.

libssl3t64-dbgsym: debug symbols for libssl3t64
openssl: Secure Sockets Layer toolkit - cryptographic utility

 This package is part of the OpenSSL project's implementation of the SSL
 and TLS cryptographic protocols for secure communication over the
 Internet.
 .
 It contains the general-purpose command line binary /usr/bin/openssl,
 useful for cryptographic operations such as:
  * creating RSA, DH, and DSA key parameters;
  * creating X.509 certificates, CSRs, and CRLs;
  * calculating message digests;
  * encrypting and decrypting with ciphers;
  * testing SSL/TLS clients and servers;
  * handling S/MIME signed or encrypted mail.

openssl-dbgsym: debug symbols for openssl
openssl-provider-legacy: Secure Sockets Layer toolkit - cryptographic utility

 This package is part of the OpenSSL project's implementation of the SSL
 and TLS cryptographic protocols for secure communication over the
 Internet.
 .
 This package contains the legacy provider. The OpenSSL legacy provider
 supplies OpenSSL implementations of algorithms that have been deemed legacy.
 Such algorithms have commonly fallen out of use, have been deemed insecure by
 the cryptography community, or something similar.
 For details see OSSL_PROVIDER-legacy man page.

openssl-provider-legacy-dbgsym: debug symbols for openssl-provider-legacy