Ubuntu doesn't typically update to newer software versions. Like most
other Linux distros, we backport security patches to the versions of
software we ship, whether or not there is still upstream support for it.
** Changed in: openssl (Ubuntu)
Status: New => Won't Fix
--
You received
>From https://www.openssl.org/policies/releasestrat.html
Support for version 1.0.1 will cease on 2016-12-31. No further releases
of 1.0.1 will be made after that date. Security fixes only will be
applied to 1.0.1 until then.
How is Ubuntu going to deal with that? Both Precise and Trusty