After announcing a few days ago that a new, important OpenSSL update is available for all supported Ubuntu Linux operating systems, Canonical’s Marc Deslauriers now informs the community about another patch to address a regression.
The new security advisory (USN-3087-2) talks about a regression that was accidentally introduced along with the previous OpenSSL update (as detailed on USN-3087-1), which addressed no less than eleven (11) security vulnerabilities discovered upstream by the OpenSSL team.
Users were urged to upgrade to the following new OpenSSL packages: libssl1.0.0 1.0.2g-1ubuntu4.4 on Ubuntu 16.04 LTS, libssl1.0.0 1.0.1f-1ubuntu2.20 on Ubuntu 14.04 LTS, and libssl1.0.0 1.0.1-4ubuntu5.37 on Ubuntu 12.04 LTS. However, new versions have been published to address the respective regression.
Submitted by: Arnfried Walbrecht