USN-5051-1 fixed a vulnerability in OpenSSL. This update provides the corresponding update for the openssl1.0 package in Ubuntu 18.04 LTS.
Original advisory details:
Ingo Schwarze discovered that OpenSSL incorrectly handled certain ASN.1 strings. A remote attacker could use this issue to cause OpenSSL to crash, resulting in a denial of service, or possibly obtain sensitive information. (CVE-2021-3712)
{ "binaries": [ { "binary_name": "libcrypto1.0.0-udeb", "binary_version": "1.0.2n-1ubuntu5.7" }, { "binary_name": "libssl1.0-dev", "binary_version": "1.0.2n-1ubuntu5.7" }, { "binary_name": "libssl1.0.0", "binary_version": "1.0.2n-1ubuntu5.7" }, { "binary_name": "libssl1.0.0-dbgsym", "binary_version": "1.0.2n-1ubuntu5.7" }, { "binary_name": "libssl1.0.0-udeb", "binary_version": "1.0.2n-1ubuntu5.7" }, { "binary_name": "openssl1.0", "binary_version": "1.0.2n-1ubuntu5.7" }, { "binary_name": "openssl1.0-dbgsym", "binary_version": "1.0.2n-1ubuntu5.7" } ], "availability": "No subscription required" }