-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 26 May 2023 23:30:44 +0200 Source: openssl Architecture: source Version: 1.1.1n-0+deb11u5 Distribution: bullseye-security Urgency: medium Maintainer: Debian OpenSSL Team Changed-By: Sebastian Andrzej Siewior Closes: 1034720 Changes: openssl (1.1.1n-0+deb11u5) bullseye-security; urgency=medium . * CVE-2023-0464 (Excessive Resource Usage Verifying X.509 Policy Constraints) (Closes: #1034720). * CVE-2023-0465 (Invalid certificate policies in leaf certificates are silently ignored). * CVE-2023-0466 (Certificate policy check not enabled). * Alternative fix for CVE-2022-4304 (Timing Oracle in RSA Decryption). * CVE-2023-2650 (Possible DoS translating ASN.1 object identifiers). Checksums-Sha1: fbbeb971d5f849727d97504fbbf00707ce276df7 2481 openssl_1.1.1n-0+deb11u5.dsc fe71ab8df190172227e94704d1edbe79bd313d16 141712 openssl_1.1.1n-0+deb11u5.debian.tar.xz Checksums-Sha256: 412c88207a7108507f015cd0ac5ee38fa99e5919f2704d4422f9a21a3760667b 2481 openssl_1.1.1n-0+deb11u5.dsc b9e6eb5bd11c2bafb63a6df6f786cc72f9d94b16b66ceadaf3a2971127a31836 141712 openssl_1.1.1n-0+deb11u5.debian.tar.xz Files: 4b2299ebc5315f3188fa582c873c10d9 2481 utils optional openssl_1.1.1n-0+deb11u5.dsc f3406d63715f58073e91c3dd89598865 141712 utils optional openssl_1.1.1n-0+deb11u5.debian.tar.xz -----BEGIN PGP SIGNATURE----- iQGzBAEBCgAdFiEEV4kucFIzBRM39v3RBWQfF1cS+lsFAmR0gmgACgkQBWQfF1cS +lsJRwv/ZgYxqaSZqq3HWd8nViMtWkOBiPnChE5IfyaRvKHETtoIdmyw7HH6HZ71 ppgWOrI63fWVdvito9CA56ZPVocrah9/SD9QrjqV09TgSR4sYfS7mj62DaCLWgL1 GVebbWsarG/O9x51vVJbIW37EYY8TA2InkGV9XBc8uIulCpwX4cL2Nn2v96DrROD 1jeaatg79SOByuaQK0bx4QOyTD3/nqjBs+pwCJKXbXWx5GGoGfPV9GqVIq9JgAH+ +Mao3lhOAxiYutSuRPsFvSMRkdF6RLEgKtFSBEyOEgPZR6zC1CHc7Zfq0V9rJWgR Y0ItuSxu1YU9Jd0UBE0FAI893DYO7yZbBoOWFCCGPkmgxgjbKqEPE9Xo4Nxwk6Lk O+xtbbKW3Ib4WQ2tKszoZzYtLmNgkJd2LwsiX70cqTidxphQ+azuTgwX3NTlviQZ SJkArIvnaVXUCmQUezjYli3DSTxveeB+o9chn9IcmH3Dxl6Dxb4K5YqiMeS3NSp5 btPN6u1t =67T7 -----END PGP SIGNATURE-----