This bug was fixed in the package openssl - 3.3.1-2ubuntu2
---------------
openssl (3.3.1-2ubuntu2) oracular; urgency=medium
* SECURITY UPDATE: Possible denial of service in X.509 name checks
- debian/patches/CVE-2024-6119.patch: avoid type errors in EAI-related
name check logic in crypto/x509/v3_utl.c, test/*.
- CVE-2024-6119
* Add Ubuntu-specific defines to help FIPS certification (LP: #2073991)
- UBUNTU_OSSL_SELF_TEST_DESC_PCT_DH
- UBUNTU_OSSL_PROV_FIPS_PARAM_UNAPPROVED_USAGE
-- Adrien Nader <[email protected]> Wed, 11 Sep 2024 16:09:42
+0200
** Changed in: openssl (Ubuntu Oracular)
Status: Fix Committed => Fix Released
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-6119
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2073991
Title:
Add FIPS defines to Noble OpenSSL header files
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/2073991/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
