Alerts This Week
Warning Icon 1 1,308
Alerts This Week
Warning Icon 1 1,308

Ubuntu 20.04 OpenSSL Security Flaw Denial of Service Notice USN-7980-3

ubuntu
Calendar Grey January 27, 2026
Dist Ubuntu Esm H88
Explore Ubuntu's security advisory on OpenSSL fixes for multiple vulnerabilities and potential denial of service risks.
Several security issues were fixed in OpenSSL.

Summary

Several security issues were fixed in OpenSSL.

Software Description:

- openssl: Secure Socket Layer (SSL) cryptographic library and tools

- openssl1.0: Secure Socket Layer (SSL) cryptographic library and tools

Details:

USN-7980-2 fixed vulnerabilities in OpenSSL. This update provides the

corresponding updates for CVE-2025-68160 for openssl and openssl1.0,

CVE-2025-69418 for openssl on Ubuntu 18.04 LTS and Ubuntu 20.04 LTS,

CVE-2025-69419 for openssl on Ubuntu 18.04 LTS and Ubuntu 20.04 LTS,

CVE-2025-69420 for openssl on Ubuntu 18.04 LTS and Ubuntu 20.04 LTS,

CVE-2025-69421 for openssl and openssl1.0, CVE-2026-22795 for openssl on

Ubuntu 18.04 LTS and Ubuntu 20.04 LTS, and CVE-2026-22796 for openssl and

openssl1.0.

Original advisory details:

Stanislav Fort, Petr \u0160ime\u010dek, and Hamza discovered that OpenSSL

incorrectly validated PBMAC1 parameters when doing PKCS#12 MAC

verification. An attacker could possibly use this issue to cause OpenSSL

to crash, resulting in a d...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory denial of service critical Ubuntu vulnerability open ssl

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 20.04 LTS
  libssl1.1                       1.1.1f-1ubuntu2.24+esm2
                                  Available with Ubuntu Pro
  openssl                         1.1.1f-1ubuntu2.24+esm2
                                  Available with Ubuntu Pro

Ubuntu 18.04 LTS
  libssl1.0.0                     1.0.2n-1ubuntu5.13+esm3
                                  Available with Ubuntu Pro
  libssl1.1                       1.1.1-1ubuntu2.1~18.04.23+esm7
                                  Available with Ubuntu Pro
  openssl                         1.1.1-1ubuntu2.1~18.04.23+esm7
                                  Available with Ubuntu Pro
  openssl1.0                      1.0.2n-1ubuntu5.13+esm3
                                  Available with Ubuntu Pro

Ubuntu 16.04 LTS
  libssl1.0.0                     1.0.2g-1ubuntu4.20+esm14
                                  Available with Ubuntu Pro
  openssl                         1.0.2g-1ubuntu4.20+esm14
                                  Available with Ubuntu Pro

Ubuntu 14.04 LTS
  libssl1.0.0                     1.0.1f-1ubuntu2.27+esm12
                                  Available with Ubuntu Pro
  openssl                         1.0.1f-1ubuntu2.27+esm12
                                  Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-7980-2

https://ubuntu.com/security/notices/USN-7980-1

CVE-2025-68160, CVE-2025-69418, CVE-2025-69419, CVE-2025-69420,

CVE-2025-69421, CVE-2026-22795, CVE-2026-22796

Severity
critical
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-7980-2

Topics%20covered

Topics Covered

security advisory denial of service critical Ubuntu vulnerability open ssl

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here