USN-5051-1 fixed a vulnerability in OpenSSL. This update provides the corresponding update for the openssl1.0 package in Ubuntu 18.04 LTS.
Original advisory details:
Ingo Schwarze discovered that OpenSSL incorrectly handled certain ASN.1 strings. A remote attacker could use this issue to cause OpenSSL to crash, resulting in a denial of service, or possibly obtain sensitive information. (CVE-2021-3712)
{ "availability": "No subscription required", "binaries": [ { "binary_version": "1.0.2n-1ubuntu5.7", "binary_name": "libcrypto1.0.0-udeb" }, { "binary_version": "1.0.2n-1ubuntu5.7", "binary_name": "libssl1.0-dev" }, { "binary_version": "1.0.2n-1ubuntu5.7", "binary_name": "libssl1.0.0" }, { "binary_version": "1.0.2n-1ubuntu5.7", "binary_name": "libssl1.0.0-dbgsym" }, { "binary_version": "1.0.2n-1ubuntu5.7", "binary_name": "libssl1.0.0-udeb" }, { "binary_version": "1.0.2n-1ubuntu5.7", "binary_name": "openssl1.0" }, { "binary_version": "1.0.2n-1ubuntu5.7", "binary_name": "openssl1.0-dbgsym" } ] }