The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "2:3.17.1-0ubuntu0.14.04.1", "binary_name": "libnss3" }, { "binary_version": "2:3.17.1-0ubuntu0.14.04.1", "binary_name": "libnss3-1d" }, { "binary_version": "2:3.17.1-0ubuntu0.14.04.1", "binary_name": "libnss3-dbg" }, { "binary_version": "2:3.17.1-0ubuntu0.14.04.1", "binary_name": "libnss3-dev" }, { "binary_version": "2:3.17.1-0ubuntu0.14.04.1", "binary_name": "libnss3-nssdb" }, { "binary_version": "2:3.17.1-0ubuntu0.14.04.1", "binary_name": "libnss3-tools" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "6b34-1.13.6-1ubuntu0.14.04.1", "binary_name": "icedtea-6-jre-cacao" }, { "binary_version": "6b34-1.13.6-1ubuntu0.14.04.1", "binary_name": "icedtea-6-jre-jamvm" }, { "binary_version": "6b34-1.13.6-1ubuntu0.14.04.1", "binary_name": "openjdk-6-dbg" }, { "binary_version": "6b34-1.13.6-1ubuntu0.14.04.1", "binary_name": "openjdk-6-demo" }, { "binary_version": "6b34-1.13.6-1ubuntu0.14.04.1", "binary_name": "openjdk-6-doc" }, { "binary_version": "6b34-1.13.6-1ubuntu0.14.04.1", "binary_name": "openjdk-6-jdk" }, { "binary_version": "6b34-1.13.6-1ubuntu0.14.04.1", "binary_name": "openjdk-6-jre" }, { "binary_version": "6b34-1.13.6-1ubuntu0.14.04.1", "binary_name": "openjdk-6-jre-headless" }, { "binary_version": "6b34-1.13.6-1ubuntu0.14.04.1", "binary_name": "openjdk-6-jre-lib" }, { "binary_version": "6b34-1.13.6-1ubuntu0.14.04.1", "binary_name": "openjdk-6-jre-zero" }, { "binary_version": "6b34-1.13.6-1ubuntu0.14.04.1", "binary_name": "openjdk-6-source" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "7u75-2.5.4-1~trusty1", "binary_name": "icedtea-7-jre-jamvm" }, { "binary_version": "7u75-2.5.4-1~trusty1", "binary_name": "openjdk-7-dbg" }, { "binary_version": "7u75-2.5.4-1~trusty1", "binary_name": "openjdk-7-demo" }, { "binary_version": "7u75-2.5.4-1~trusty1", "binary_name": "openjdk-7-doc" }, { "binary_version": "7u75-2.5.4-1~trusty1", "binary_name": "openjdk-7-jdk" }, { "binary_version": "7u75-2.5.4-1~trusty1", "binary_name": "openjdk-7-jre" }, { "binary_version": "7u75-2.5.4-1~trusty1", "binary_name": "openjdk-7-jre-headless" }, { "binary_version": "7u75-2.5.4-1~trusty1", "binary_name": "openjdk-7-jre-lib" }, { "binary_version": "7u75-2.5.4-1~trusty1", "binary_name": "openjdk-7-jre-zero" }, { "binary_version": "7u75-2.5.4-1~trusty1", "binary_name": "openjdk-7-source" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1.0.1f-1ubuntu2.7", "binary_name": "libcrypto1.0.0-udeb" }, { "binary_version": "1.0.1f-1ubuntu2.7", "binary_name": "libssl-dev" }, { "binary_version": "1.0.1f-1ubuntu2.7", "binary_name": "libssl-doc" }, { "binary_version": "1.0.1f-1ubuntu2.7", "binary_name": "libssl1.0.0" }, { "binary_version": "1.0.1f-1ubuntu2.7", "binary_name": "libssl1.0.0-dbg" }, { "binary_version": "1.0.1f-1ubuntu2.7", "binary_name": "libssl1.0.0-udeb" }, { "binary_version": "1.0.1f-1ubuntu2.7", "binary_name": "openssl" } ] }