[Bug 1911211] Re: Please upgrade to openssl 1.1.1g or later for 20.04

Thu Jan 21 04:00:59 UTC 2021

** Changed in: openssl (Ubuntu)
       Status: New => Invalid

** Information type changed from Private Security to Public Security

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/1911211

Title:
  Please upgrade to openssl 1.1.1g or later for 20.04

Status in openssl package in Ubuntu:
  Invalid

Bug description:
  There is a CVE for openssl (
  https://www.openssl.org/news/vulnerabilities.html#CVE-2020-1967 )
  which has been resolved in openssl v1.1.1g. The currently-shipped
  version for Ubuntu 20.04 is 1.1.1f.  I do see 1.1.1i as a branch in
  launchpad, but that appears to be an import from Debian Sid.

  Please upgrade as you are able. I would be willing to test this
  package. Thank you!

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1911211/+subscriptions