USN-6986-1
See a problem?- Source
- https://ubuntu.com/security/notices/USN-6986-1
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6986-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/USN-6986-1
- Related
- Published
- 2024-09-03T14:33:38.554425Z
- Modified
- 2024-09-03T14:33:38.554425Z
- Summary
- openssl vulnerability
- Details
-
David Benjamin discovered that OpenSSL incorrectly handled certain X.509 certificates. An attacker could possible use this issue to cause a denial of service or expose sensitive information.
- References
Affected packages
Ubuntu:22.04:LTS / openssl
Package
- Name
- openssl
- Purl
- pkg:deb/ubuntu/openssl@3.0.2-0ubuntu1.18?arch=src?distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.0.2-0ubuntu1.18
Affected versions
1.*
1.1.1l-1ubuntu1
3.*
3.0.0-1ubuntu1
3.0.1-0ubuntu1
3.0.2-0ubuntu1
3.0.2-0ubuntu1.1
3.0.2-0ubuntu1.2
3.0.2-0ubuntu1.4
3.0.2-0ubuntu1.5
3.0.2-0ubuntu1.6
3.0.2-0ubuntu1.7
3.0.2-0ubuntu1.8
3.0.2-0ubuntu1.9
3.0.2-0ubuntu1.10
3.0.2-0ubuntu1.12
3.0.2-0ubuntu1.13
3.0.2-0ubuntu1.14
3.0.2-0ubuntu1.15
3.0.2-0ubuntu1.16
3.0.2-0ubuntu1.17
Ubuntu:24.04:LTS / openssl
Package
- Name
- openssl
- Purl
- pkg:deb/ubuntu/openssl@3.0.13-0ubuntu3.4?arch=src?distro=noble
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.0.13-0ubuntu3.4
Affected versions
3.*
3.0.10-1ubuntu2
3.0.10-1ubuntu2.1
3.0.10-1ubuntu3
3.0.10-1ubuntu4
3.0.13-0ubuntu2
3.0.13-0ubuntu3
3.0.13-0ubuntu3.1
3.0.13-0ubuntu3.2
3.0.13-0ubuntu3.3
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"libssl3t64": "3.0.13-0ubuntu3.4",
"libssl-dev": "3.0.13-0ubuntu3.4",
"openssl-dbgsym": "3.0.13-0ubuntu3.4",
"libssl3t64-dbgsym": "3.0.13-0ubuntu3.4",
"openssl": "3.0.13-0ubuntu3.4",
"libssl-doc": "3.0.13-0ubuntu3.4"
}
]
}