** Changed in: openssl (Ubuntu)
Status: New => Invalid
** Information type changed from Private Security to Public Security
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/1911211
Title:
Please upgrade to openssl 1.1.1g or later for 20.04
Status in openssl package in Ubuntu:
Invalid
Bug description:
There is a CVE for openssl (
https://www.openssl.org/news/vulnerabilities.html#CVE-2020-1967 )
which has been resolved in openssl v1.1.1g. The currently-shipped
version for Ubuntu 20.04 is 1.1.1f. I do see 1.1.1i as a branch in
launchpad, but that appears to be an import from Debian Sid.
Please upgrade as you are able. I would be willing to test this
package. Thank you!
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1911211/+subscriptions
--
Mailing list: https://launchpad.net/~touch-packages
Post to : touch-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~touch-packages
More help : https://help.launchpad.net/ListHelp
