{ "summary": { "snap": { "added": [], "removed": [], "diff": [] }, "deb": { "added": [], "removed": [], "diff": [ "libssl3", "openssl" ] } }, "diff": { "deb": [ { "name": "libssl3", "from_version": { "source_package_name": "openssl", "source_package_version": "3.0.2-0ubuntu1.20", "version": "3.0.2-0ubuntu1.20" }, "to_version": { "source_package_name": "openssl", "source_package_version": "3.0.2-0ubuntu1.21", "version": "3.0.2-0ubuntu1.21" }, "cves": [ { "cve": "CVE-2025-15467", "url": "https://ubuntu.com/security/CVE-2025-15467", "cve_description": "Stack buffer overflow in CMS AuthEnvelopedData parsing", "cve_priority": "medium", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2025-68160", "url": "https://ubuntu.com/security/CVE-2025-68160", "cve_description": "Heap out-of-bounds write in BIO_f_linebuffer on short writes", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2025-69418", "url": "https://ubuntu.com/security/CVE-2025-69418", "cve_description": "Unauthenticated/unencrypted trailing bytes with low-level OCB function calls", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2025-69419", "url": "https://ubuntu.com/security/CVE-2025-69419", "cve_description": "Out of bounds write in PKCS12_get_friendlyname() UTF-8 conversion", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2025-69420", "url": "https://ubuntu.com/security/CVE-2025-69420", "cve_description": "Missing ASN1_TYPE validation in TS_RESP_verify_response() function", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2025-69421", "url": "https://ubuntu.com/security/CVE-2025-69421", "cve_description": "NULL Pointer Dereference in PKCS12_item_decrypt_d2i_ex function", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2026-2279", "url": "https://ubuntu.com/security/CVE-2026-2279", "cve_description": "", "cve_priority": "n/a", "cve_public_date": "" }, { "cve": "CVE-2026-22795", "url": "https://ubuntu.com/security/CVE-2026-22795", "cve_description": "Missing ASN1_TYPE validation in PKCS#12 parsing", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2026-22796", "url": "https://ubuntu.com/security/CVE-2026-22796", "cve_description": "ASN1_TYPE Type Confusion in the PKCS7_digest_from_attributes() function", "cve_priority": "low", "cve_public_date": "2026-01-27" } ], "launchpad_bugs_fixed": [], "changes": [ { "cves": [ { "cve": "CVE-2025-15467", "url": "https://ubuntu.com/security/CVE-2025-15467", "cve_description": "Stack buffer overflow in CMS AuthEnvelopedData parsing", "cve_priority": "medium", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2025-68160", "url": "https://ubuntu.com/security/CVE-2025-68160", "cve_description": "Heap out-of-bounds write in BIO_f_linebuffer on short writes", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2025-69418", "url": "https://ubuntu.com/security/CVE-2025-69418", "cve_description": "Unauthenticated/unencrypted trailing bytes with low-level OCB function calls", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2025-69419", "url": "https://ubuntu.com/security/CVE-2025-69419", "cve_description": "Out of bounds write in PKCS12_get_friendlyname() UTF-8 conversion", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2025-69420", "url": "https://ubuntu.com/security/CVE-2025-69420", "cve_description": "Missing ASN1_TYPE validation in TS_RESP_verify_response() function", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2025-69421", "url": "https://ubuntu.com/security/CVE-2025-69421", "cve_description": "NULL Pointer Dereference in PKCS12_item_decrypt_d2i_ex function", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2026-2279", "url": "https://ubuntu.com/security/CVE-2026-2279", "cve_description": "", "cve_priority": "n/a", "cve_public_date": "" }, { "cve": "CVE-2026-22795", "url": "https://ubuntu.com/security/CVE-2026-22795", "cve_description": "Missing ASN1_TYPE validation in PKCS#12 parsing", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2026-22796", "url": "https://ubuntu.com/security/CVE-2026-22796", "cve_description": "ASN1_TYPE Type Confusion in the PKCS7_digest_from_attributes() function", "cve_priority": "low", "cve_public_date": "2026-01-27" } ], "log": [ "", " * SECURITY UPDATE: Stack buffer overflow in CMS AuthEnvelopedData parsing", " - debian/patches/CVE-2025-15467-1.patch: correct handling of", " AEAD-encrypted CMS with inadmissibly long IV in crypto/evp/evp_lib.c.", " - debian/patches/CVE-2025-15467-2.patch: some comments to clarify", " functions usage in crypto/asn1/evp_asn1.c.", " - debian/patches/CVE-2025-15467-3.patch: test for handling of", " AEAD-encrypted CMS with inadmissibly long IV in test/cmsapitest.c,", " test/recipes/80-test_cmsapi.t,", " test/recipes/80-test_cmsapi_data/encDataWithTooLongIV.pem.", " - CVE-2025-15467", " * SECURITY UPDATE: Heap out-of-bounds write in BIO_f_linebuffer on short", " writes", " - debian/patches/CVE-2025-68160.patch: fix heap buffer overflow in", " BIO_f_linebuffer in crypto/bio/bf_lbuf.c.", " - CVE-2025-68160", " * SECURITY UPDATE: Unauthenticated/unencrypted trailing bytes with", " low-level OCB function calls", " - debian/patches/CVE-2025-69418.patch: fix OCB AES-NI/HW stream path", " unauthenticated/unencrypted trailing bytes in crypto/modes/ocb128.c.", " - CVE-2025-69418", " * SECURITY UPDATE: Out of bounds write in PKCS12_get_friendlyname() UTF-8", " conversion", " - debian/patches/CVE-2025-69419.patch: check return code of UTF8_putc", " in crypto/asn1/a_strex.c, crypto/pkcs12/p12_utl.c.", " - CVE-2025-69419", " * SECURITY UPDATE: Missing ASN1_TYPE validation in", " TS_RESP_verify_response() function", " - debian/patches/CVE-2025-69420.patch: verify ASN1 object's types", " before attempting to access them as a particular type in", " crypto/ts/ts_rsp_verify.c.", " - CVE-2025-69420", " * SECURITY UPDATE: NULL Pointer Dereference in PKCS12_item_decrypt_d2i_ex", " - debian/patches/CVE-2025-69421.patch: add NULL check in", " crypto/pkcs12/p12_decr.c.", " - CVE-2025-69421", " * SECURITY UPDATE: ASN1_TYPE missing validation and type confusion", " - debian/patches/CVE-2026-2279x.patch: ensure ASN1 types are checked", " before use in apps/s_client.c, crypto/pkcs12/p12_kiss.c,", " crypto/pkcs7/pk7_doit.c.", " - CVE-2026-22795", " - CVE-2026-22796", "" ], "package": "openssl", "version": "3.0.2-0ubuntu1.21", "urgency": "medium", "distributions": "jammy-security", "launchpad_bugs_fixed": [], "author": "Marc Deslauriers ", "date": "Mon, 26 Jan 2026 07:32:08 -0500" } ], "notes": null, "is_version_downgrade": false }, { "name": "openssl", "from_version": { "source_package_name": "openssl", "source_package_version": "3.0.2-0ubuntu1.20", "version": "3.0.2-0ubuntu1.20" }, "to_version": { "source_package_name": "openssl", "source_package_version": "3.0.2-0ubuntu1.21", "version": "3.0.2-0ubuntu1.21" }, "cves": [ { "cve": "CVE-2025-15467", "url": "https://ubuntu.com/security/CVE-2025-15467", "cve_description": "Stack buffer overflow in CMS AuthEnvelopedData parsing", "cve_priority": "medium", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2025-68160", "url": "https://ubuntu.com/security/CVE-2025-68160", "cve_description": "Heap out-of-bounds write in BIO_f_linebuffer on short writes", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2025-69418", "url": "https://ubuntu.com/security/CVE-2025-69418", "cve_description": "Unauthenticated/unencrypted trailing bytes with low-level OCB function calls", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2025-69419", "url": "https://ubuntu.com/security/CVE-2025-69419", "cve_description": "Out of bounds write in PKCS12_get_friendlyname() UTF-8 conversion", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2025-69420", "url": "https://ubuntu.com/security/CVE-2025-69420", "cve_description": "Missing ASN1_TYPE validation in TS_RESP_verify_response() function", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2025-69421", "url": "https://ubuntu.com/security/CVE-2025-69421", "cve_description": "NULL Pointer Dereference in PKCS12_item_decrypt_d2i_ex function", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2026-2279", "url": "https://ubuntu.com/security/CVE-2026-2279", "cve_description": "", "cve_priority": "n/a", "cve_public_date": "" }, { "cve": "CVE-2026-22795", "url": "https://ubuntu.com/security/CVE-2026-22795", "cve_description": "Missing ASN1_TYPE validation in PKCS#12 parsing", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2026-22796", "url": "https://ubuntu.com/security/CVE-2026-22796", "cve_description": "ASN1_TYPE Type Confusion in the PKCS7_digest_from_attributes() function", "cve_priority": "low", "cve_public_date": "2026-01-27" } ], "launchpad_bugs_fixed": [], "changes": [ { "cves": [ { "cve": "CVE-2025-15467", "url": "https://ubuntu.com/security/CVE-2025-15467", "cve_description": "Stack buffer overflow in CMS AuthEnvelopedData parsing", "cve_priority": "medium", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2025-68160", "url": "https://ubuntu.com/security/CVE-2025-68160", "cve_description": "Heap out-of-bounds write in BIO_f_linebuffer on short writes", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2025-69418", "url": "https://ubuntu.com/security/CVE-2025-69418", "cve_description": "Unauthenticated/unencrypted trailing bytes with low-level OCB function calls", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2025-69419", "url": "https://ubuntu.com/security/CVE-2025-69419", "cve_description": "Out of bounds write in PKCS12_get_friendlyname() UTF-8 conversion", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2025-69420", "url": "https://ubuntu.com/security/CVE-2025-69420", "cve_description": "Missing ASN1_TYPE validation in TS_RESP_verify_response() function", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2025-69421", "url": "https://ubuntu.com/security/CVE-2025-69421", "cve_description": "NULL Pointer Dereference in PKCS12_item_decrypt_d2i_ex function", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2026-2279", "url": "https://ubuntu.com/security/CVE-2026-2279", "cve_description": "", "cve_priority": "n/a", "cve_public_date": "" }, { "cve": "CVE-2026-22795", "url": "https://ubuntu.com/security/CVE-2026-22795", "cve_description": "Missing ASN1_TYPE validation in PKCS#12 parsing", "cve_priority": "low", "cve_public_date": "2026-01-27" }, { "cve": "CVE-2026-22796", "url": "https://ubuntu.com/security/CVE-2026-22796", "cve_description": "ASN1_TYPE Type Confusion in the PKCS7_digest_from_attributes() function", "cve_priority": "low", "cve_public_date": "2026-01-27" } ], "log": [ "", " * SECURITY UPDATE: Stack buffer overflow in CMS AuthEnvelopedData parsing", " - debian/patches/CVE-2025-15467-1.patch: correct handling of", " AEAD-encrypted CMS with inadmissibly long IV in crypto/evp/evp_lib.c.", " - debian/patches/CVE-2025-15467-2.patch: some comments to clarify", " functions usage in crypto/asn1/evp_asn1.c.", " - debian/patches/CVE-2025-15467-3.patch: test for handling of", " AEAD-encrypted CMS with inadmissibly long IV in test/cmsapitest.c,", " test/recipes/80-test_cmsapi.t,", " test/recipes/80-test_cmsapi_data/encDataWithTooLongIV.pem.", " - CVE-2025-15467", " * SECURITY UPDATE: Heap out-of-bounds write in BIO_f_linebuffer on short", " writes", " - debian/patches/CVE-2025-68160.patch: fix heap buffer overflow in", " BIO_f_linebuffer in crypto/bio/bf_lbuf.c.", " - CVE-2025-68160", " * SECURITY UPDATE: Unauthenticated/unencrypted trailing bytes with", " low-level OCB function calls", " - debian/patches/CVE-2025-69418.patch: fix OCB AES-NI/HW stream path", " unauthenticated/unencrypted trailing bytes in crypto/modes/ocb128.c.", " - CVE-2025-69418", " * SECURITY UPDATE: Out of bounds write in PKCS12_get_friendlyname() UTF-8", " conversion", " - debian/patches/CVE-2025-69419.patch: check return code of UTF8_putc", " in crypto/asn1/a_strex.c, crypto/pkcs12/p12_utl.c.", " - CVE-2025-69419", " * SECURITY UPDATE: Missing ASN1_TYPE validation in", " TS_RESP_verify_response() function", " - debian/patches/CVE-2025-69420.patch: verify ASN1 object's types", " before attempting to access them as a particular type in", " crypto/ts/ts_rsp_verify.c.", " - CVE-2025-69420", " * SECURITY UPDATE: NULL Pointer Dereference in PKCS12_item_decrypt_d2i_ex", " - debian/patches/CVE-2025-69421.patch: add NULL check in", " crypto/pkcs12/p12_decr.c.", " - CVE-2025-69421", " * SECURITY UPDATE: ASN1_TYPE missing validation and type confusion", " - debian/patches/CVE-2026-2279x.patch: ensure ASN1 types are checked", " before use in apps/s_client.c, crypto/pkcs12/p12_kiss.c,", " crypto/pkcs7/pk7_doit.c.", " - CVE-2026-22795", " - CVE-2026-22796", "" ], "package": "openssl", "version": "3.0.2-0ubuntu1.21", "urgency": "medium", "distributions": "jammy-security", "launchpad_bugs_fixed": [], "author": "Marc Deslauriers ", "date": "Mon, 26 Jan 2026 07:32:08 -0500" } ], "notes": null, "is_version_downgrade": false } ], "snap": [] }, "added": { "deb": [], "snap": [] }, "removed": { "deb": [], "snap": [] }, "notes": "Changelog diff for Ubuntu 22.04 jammy image from release image serial 20260121 to 20260127", "from_series": "jammy", "to_series": "jammy", "from_serial": "20260121", "to_serial": "20260127", "from_manifest_filename": "release_manifest.previous", "to_manifest_filename": "manifest.current" }