Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Ubuntu 18.10, 18.04 LTS, 16.04 LTS: USN-3899-1 Moderate OpenSSL Issues

ubuntu
Calendar Grey February 27, 2019
Dist Ubuntu Esm H88
=========================================================================Ubuntu Security Notice USN-
OpenSSL could be made to expose sensitive information over the network.

Summary

OpenSSL could be made to expose sensitive information over the network.

Software Description:

- openssl1.0: Secure Socket Layer (SSL) cryptographic library and tools

- openssl: Secure Socket Layer (SSL) cryptographic library and tools

Details:

Juraj Somorovsky, Robert Merget, and Nimrod Aviram discovered that certain

applications incorrectly used OpenSSL and could be exposed to a padding

oracle attack. A remote attacker could possibly use this issue to decrypt

data.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.10:
  libssl1.0.0                     1.0.2n-1ubuntu6.2

Ubuntu 18.04 LTS:
  libssl1.0.0                     1.0.2n-1ubuntu5.3

Ubuntu 16.04 LTS:
  libssl1.0.0                     1.0.2g-1ubuntu4.15

After a standard system update you need to reboot your computer to make
all the necessary changes.

References

https://ubuntu.com/security/notices/USN-3899-1

CVE-2019-1559

February 27, 2019

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here