The Complete Magazine on Open Source

Canonical releases new Ubuntu update to patch OpenSSL regression

, / 1327 0

Ubuntu update fixes OpenSSL regression

Canonical has released yet another important security patch for Ubuntu users. This new update fixes a regression that was accidentally released with the recent OpenSSL update and addresses around 11 security vulnerabilities that were reported by the OpenSSL team.

According to an official statement by Canonical, USN-3087-1 was published to fix OpenSSL vulnerabilities. However, the fix for CVE-2016-2182 was incomplete and caused a major issue of regression while parsing certificates. Thus, the latest update arrived with fixes for all the existing problems.

Canonical has published some new OpenSSL packages and urged Ubuntu users to update their systems once again. The new packages are ibssl1.0.0 1.0.2g-1ubuntu4.5 for Ubuntu 16.04 LTS, libssl1.0.0 1.0.1f-1ubuntu2.21 for Ubuntu 14.04 LTS, and libssl1.0.0 1.0.1-4ubuntu5.38 for Ubuntu 12.04 LTS.

Ubuntu users can find the package update in Ubuntu Software Centre or Synaptic Package Manager. Once downloaded, the update can be manually flashed via command-line.