USN-6663-1 provided a security update for OpenSSL. This update provides the corresponding update for Ubuntu 24.04 LTS.
Original advisory details:
As a security improvement, OpenSSL will now return deterministic random bytes instead of an error when detecting wrong padding in PKCS#1 v1.5 RSA to prevent its use in possible Bleichenbacher timing attacks.
{ "availability": "No subscription required", "binaries": [ { "binary_version": "3.0.13-0ubuntu3.1", "binary_name": "libssl-dev" }, { "binary_version": "3.0.13-0ubuntu3.1", "binary_name": "libssl-doc" }, { "binary_version": "3.0.13-0ubuntu3.1", "binary_name": "libssl3t64" }, { "binary_version": "3.0.13-0ubuntu3.1", "binary_name": "libssl3t64-dbgsym" }, { "binary_version": "3.0.13-0ubuntu3.1", "binary_name": "openssl" }, { "binary_version": "3.0.13-0ubuntu3.1", "binary_name": "openssl-dbgsym" } ] }