Stanislav Fort discovered that OpenSSL incorrectly handled memory when trying to decrypt CMS messages encrypted with password-based encryption. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. (CVE-2025-9230)
Stanislav Fort discovered that OpenSSL had a timing side-channel in SM2 signature computations on ARM platforms. A remote attacker could possibly use this issue to recover private data. This issue only affected Ubuntu 25.04. (CVE-2025-9231)
Stanislav Fort discovered that OpenSSL incorrectly handled memory during HTTP requests when "no_proxy" environment variable is set. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 25.04. (CVE-2025-9232)
{ "binaries": [ { "binary_name": "libssl-dev", "binary_version": "3.4.1-1ubuntu4" }, { "binary_name": "libssl3t64", "binary_version": "3.4.1-1ubuntu4" }, { "binary_name": "openssl", "binary_version": "3.4.1-1ubuntu4" }, { "binary_name": "openssl-provider-legacy", "binary_version": "3.4.1-1ubuntu4" } ], "availability": "No subscription required" }
{ "binaries": [ { "binary_name": "libssl-dev", "binary_version": "1.0.1f-1ubuntu2.27+esm11" }, { "binary_name": "libssl1.0.0", "binary_version": "1.0.1f-1ubuntu2.27+esm11" }, { "binary_name": "openssl", "binary_version": "1.0.1f-1ubuntu2.27+esm11" } ], "availability": "Available with Ubuntu Pro with Legacy support add-on: https://ubuntu.com/pro" }
{ "binaries": [ { "binary_name": "libssl-dev", "binary_version": "1.0.2g-1ubuntu4.20+esm13" }, { "binary_name": "libssl1.0.0", "binary_version": "1.0.2g-1ubuntu4.20+esm13" }, { "binary_name": "openssl", "binary_version": "1.0.2g-1ubuntu4.20+esm13" } ], "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro" }
{ "binaries": [ { "binary_name": "libssl-dev", "binary_version": "1.1.1-1ubuntu2.1~18.04.23+esm6" }, { "binary_name": "libssl1.1", "binary_version": "1.1.1-1ubuntu2.1~18.04.23+esm6" }, { "binary_name": "openssl", "binary_version": "1.1.1-1ubuntu2.1~18.04.23+esm6" } ], "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro" }
{ "binaries": [ { "binary_name": "libssl1.0-dev", "binary_version": "1.0.2n-1ubuntu5.13+esm2" }, { "binary_name": "libssl1.0.0", "binary_version": "1.0.2n-1ubuntu5.13+esm2" }, { "binary_name": "openssl1.0", "binary_version": "1.0.2n-1ubuntu5.13+esm2" } ], "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro" }
{ "binaries": [ { "binary_name": "libssl-dev", "binary_version": "1.1.1f-1ubuntu2.24+esm1" }, { "binary_name": "libssl1.1", "binary_version": "1.1.1f-1ubuntu2.24+esm1" }, { "binary_name": "openssl", "binary_version": "1.1.1f-1ubuntu2.24+esm1" } ], "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro" }