Ubuntu
openssl package

Unpatched CVE in Jammy

Bug #2007730 reported by Jack Fewx
260
This bug affects 1 person
Affects Status Importance Assigned to Milestone
openssl (Ubuntu)
Fix Released
Undecided
Unassigned

Bug Description

CVE-2022-3996 (7.5) is showing as in need of patching in Jammy.
I was able to apply the upstream patch without modification to the source.

Tags: jammy patch cve

CVE References

Revision history for this message
Jack Fewx (cseengineer) wrote :

Attaching debdiff of patch

Jack Fewx (cseengineer)
tags: added: cve
Marc Deslauriers (mdeslaur)
information type: Private Security → Public Security
Revision history for this message
Camila Camargo de Matos (ccdm94) wrote (last edit ):

A fix for this issue has been released, as per USN-6039-1 (https://ubuntu.com/security/notices/USN-6039-1).

Changed in openssl (Ubuntu):
status: New → Fix Released
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.