-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- -------------------------------------------------------------------------
Debian Security Advisory DSA-6335-1 [email protected]
https://www.debian.org/security/ Salvatore Bonaccorso
June 09, 2026 https://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : openssl
CVE ID : CVE-2026-7383 CVE-2026-9076 CVE-2026-34180 CVE-2026-34181
CVE-2026-34182 CVE-2026-34183 CVE-2026-42764 CVE-2026-42766
CVE-2026-42767 CVE-2026-42768 CVE-2026-42769 CVE-2026-42770
CVE-2026-45445 CVE-2026-45446 CVE-2026-45447
Multiple vulnerabilities have been discovered in OpenSSL, a Secure
Sockets Layer toolkit, which may result in denial of service,
information leaks, or potentially remote code execution.
Additional details can be found in the upstream advisory:
https://openssl-library.org/news/secadv/20260609.txt
For the oldstable distribution (bookworm), these problems have been fixed
in version 3.0.20-1~deb12u2.
For the stable distribution (trixie), these problems have been fixed in
version 3.5.6-1~deb13u2.
We recommend that you upgrade your openssl packages.
For the detailed security status of openssl please refer to its security
tracker page at:
https://security-tracker.debian.org/tracker/openssl
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: [email protected]
-----BEGIN PGP SIGNATURE-----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=7GPH
-----END PGP SIGNATURE-----